xploitscan-shared-rules 1.2.1 → 1.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (9) hide show
  1. package/LICENSE +1 -1
  2. package/README.md +58 -0
  3. package/dist/index.cjs +2837 -313
  4. package/dist/index.cjs.map +1 -1
  5. package/dist/index.d.cts +163 -1
  6. package/dist/index.d.ts +163 -1
  7. package/dist/index.js +2781 -313
  8. package/dist/index.js.map +1 -1
  9. package/package.json +10 -3
package/dist/index.js CHANGED
@@ -10,11 +10,381 @@ function getSnippet(content, line, contextLines = 2) {
10
10
  }).join("\n");
11
11
  }
12
12
 
13
+ // src/ast/parse.ts
14
+ import { parse } from "@babel/parser";
15
+ var MAX_CACHE = 256;
16
+ var cache = /* @__PURE__ */ new Map();
17
+ function cacheKey(filename, contentHash) {
18
+ return `${filename}:${contentHash}`;
19
+ }
20
+ function quickHash(s) {
21
+ let h = 5381;
22
+ const step = Math.max(1, Math.floor(s.length / 32));
23
+ for (let i = 0; i < s.length; i += step) {
24
+ h = (h << 5) + h + s.charCodeAt(i) | 0;
25
+ }
26
+ return h * 31 + s.length | 0;
27
+ }
28
+ function pickLanguage(filename) {
29
+ if (/\.tsx$/i.test(filename)) return "tsx";
30
+ if (/\.jsx$/i.test(filename)) return "jsx";
31
+ if (/\.(ts|cts|mts)$/i.test(filename)) return "ts";
32
+ if (/\.(js|cjs|mjs)$/i.test(filename)) return "js";
33
+ return null;
34
+ }
35
+ function parseFile(content, filename) {
36
+ const lang = pickLanguage(filename);
37
+ if (!lang) return null;
38
+ if (!content || content.length === 0) return null;
39
+ const key = cacheKey(filename, quickHash(content));
40
+ if (cache.has(key)) return cache.get(key) ?? null;
41
+ const plugins = [];
42
+ if (lang === "ts" || lang === "tsx") plugins.push("typescript");
43
+ if (lang === "jsx" || lang === "tsx") plugins.push("jsx");
44
+ plugins.push("decorators-legacy", "classProperties", "dynamicImport", "topLevelAwait");
45
+ let ast = null;
46
+ try {
47
+ ast = parse(content, {
48
+ sourceType: "unambiguous",
49
+ allowImportExportEverywhere: true,
50
+ allowReturnOutsideFunction: true,
51
+ allowAwaitOutsideFunction: true,
52
+ allowUndeclaredExports: true,
53
+ errorRecovery: true,
54
+ plugins
55
+ });
56
+ } catch {
57
+ cache.set(key, null);
58
+ if (cache.size > MAX_CACHE) {
59
+ const firstKey = cache.keys().next().value;
60
+ if (firstKey !== void 0) cache.delete(firstKey);
61
+ }
62
+ return null;
63
+ }
64
+ const entry = { ast, language: lang };
65
+ cache.set(key, entry);
66
+ if (cache.size > MAX_CACHE) {
67
+ const firstKey = cache.keys().next().value;
68
+ if (firstKey !== void 0) cache.delete(firstKey);
69
+ }
70
+ return entry;
71
+ }
72
+
73
+ // src/ast/taint.ts
74
+ import _traverse from "@babel/traverse";
75
+ var traverse = typeof _traverse === "function" ? _traverse : _traverse.default;
76
+ var TAINTED_PROP_SUFFIXES = /* @__PURE__ */ new Set([
77
+ "body",
78
+ "query",
79
+ "params",
80
+ "headers",
81
+ "cookies",
82
+ "queryStringParameters",
83
+ "pathParameters",
84
+ "rawBody",
85
+ "searchParams"
86
+ ]);
87
+ var TAINTED_REQUEST_OBJECTS = /* @__PURE__ */ new Set([
88
+ "req",
89
+ "request",
90
+ "ctx",
91
+ // Koa
92
+ "context",
93
+ // Koa alt
94
+ "event"
95
+ // Lambda
96
+ ]);
97
+ function buildTaintMap(parsed) {
98
+ const tainted = /* @__PURE__ */ new Set();
99
+ function reachesRequestIdent(node) {
100
+ if (!node) return false;
101
+ if (node.type === "Identifier") return TAINTED_REQUEST_OBJECTS.has(node.name);
102
+ if (node.type === "MemberExpression") {
103
+ if (node.property.type === "Identifier" && node.property.name === "request" && node.object.type === "Identifier" && TAINTED_REQUEST_OBJECTS.has(node.object.name)) {
104
+ return true;
105
+ }
106
+ return reachesRequestIdent(node.object);
107
+ }
108
+ return false;
109
+ }
110
+ function nodeIsTaintedSource(node) {
111
+ if (!node) return false;
112
+ if (node.type === "MemberExpression") {
113
+ const prop = node.property;
114
+ const propName = prop.type === "Identifier" ? prop.name : prop.type === "StringLiteral" ? prop.value : "";
115
+ if (TAINTED_PROP_SUFFIXES.has(propName)) {
116
+ const obj = node.object;
117
+ if (obj.type === "Identifier" && TAINTED_REQUEST_OBJECTS.has(obj.name)) {
118
+ return true;
119
+ }
120
+ if (reachesRequestIdent(obj)) return true;
121
+ if (nodeIsTaintedSource(obj)) return true;
122
+ }
123
+ if (node.object.type === "Identifier" && node.object.name === "process" && prop.type === "Identifier" && prop.name === "argv") {
124
+ return true;
125
+ }
126
+ if (nodeIsTaintedSource(node.object)) return true;
127
+ return false;
128
+ }
129
+ if (node.type === "CallExpression") {
130
+ const callee = node.callee;
131
+ if (callee.type === "MemberExpression" && callee.property.type === "Identifier" && callee.property.name === "get" && nodeIsTaintedSource(callee.object)) {
132
+ return true;
133
+ }
134
+ const BODY_READERS = /* @__PURE__ */ new Set(["json", "formData", "text", "arrayBuffer", "blob"]);
135
+ if (callee.type === "MemberExpression" && callee.property.type === "Identifier" && BODY_READERS.has(callee.property.name)) {
136
+ const obj = callee.object;
137
+ if (obj.type === "Identifier" && TAINTED_REQUEST_OBJECTS.has(obj.name)) {
138
+ return true;
139
+ }
140
+ if (reachesRequestIdent(obj)) return true;
141
+ }
142
+ }
143
+ if (node.type === "AwaitExpression") {
144
+ return nodeIsTaintedSource(node.argument);
145
+ }
146
+ return false;
147
+ }
148
+ function exprIsTainted(node) {
149
+ if (!node) return false;
150
+ if (nodeIsTaintedSource(node)) return true;
151
+ if (node.type === "Identifier") return tainted.has(node.name);
152
+ if (node.type === "TemplateLiteral") {
153
+ return node.expressions.some((e) => exprIsTainted(e));
154
+ }
155
+ if (node.type === "BinaryExpression" && node.operator === "+") {
156
+ return exprIsTainted(node.left) || exprIsTainted(node.right);
157
+ }
158
+ if (node.type === "LogicalExpression" && (node.operator === "||" || node.operator === "??")) {
159
+ return exprIsTainted(node.left) || exprIsTainted(node.right);
160
+ }
161
+ if (node.type === "ConditionalExpression") {
162
+ return exprIsTainted(node.consequent) || exprIsTainted(node.alternate);
163
+ }
164
+ if (node.type === "MemberExpression") {
165
+ return exprIsTainted(node.object);
166
+ }
167
+ if (node.type === "CallExpression") {
168
+ if (nodeIsTaintedSource(node)) return true;
169
+ if (node.callee.type === "MemberExpression") {
170
+ if (exprIsTainted(node.callee.object)) return true;
171
+ const obj = node.callee.object;
172
+ const prop = node.callee.property;
173
+ if (prop.type === "Identifier" && obj.type === "Identifier" && obj.name === "path" && ["join", "resolve", "normalize", "format", "parse", "relative"].includes(prop.name)) {
174
+ return node.arguments.some((a) => a.type !== "SpreadElement" && exprIsTainted(a));
175
+ }
176
+ if (prop.type === "Identifier" && obj.type === "Identifier" && obj.name === "Buffer" && ["from", "concat", "alloc", "allocUnsafe"].includes(prop.name)) {
177
+ return node.arguments.some((a) => a.type !== "SpreadElement" && exprIsTainted(a));
178
+ }
179
+ }
180
+ if (node.callee.type === "Identifier") {
181
+ if (["String", "Number", "Boolean", "URL", "URLSearchParams"].includes(node.callee.name)) {
182
+ return node.arguments.some((a) => a.type !== "SpreadElement" && exprIsTainted(a));
183
+ }
184
+ }
185
+ }
186
+ if (node.type === "AwaitExpression") {
187
+ return exprIsTainted(node.argument);
188
+ }
189
+ return false;
190
+ }
191
+ traverse(parsed.ast, {
192
+ VariableDeclarator(path) {
193
+ const node = path.node;
194
+ if (node.type !== "VariableDeclarator") return;
195
+ const init = node.init;
196
+ if (!init) return;
197
+ if (node.id.type === "Identifier") {
198
+ if (exprIsTainted(init)) {
199
+ tainted.add(node.id.name);
200
+ }
201
+ }
202
+ if (node.id.type === "ObjectPattern") {
203
+ const isTainted2 = nodeIsTaintedSource(init) || init.type === "Identifier" && tainted.has(init.name);
204
+ if (isTainted2) {
205
+ for (const prop of node.id.properties) {
206
+ if (prop.type === "ObjectProperty") {
207
+ if (prop.value.type === "Identifier") tainted.add(prop.value.name);
208
+ } else if (prop.type === "RestElement") {
209
+ if (prop.argument.type === "Identifier") tainted.add(prop.argument.name);
210
+ }
211
+ }
212
+ }
213
+ }
214
+ },
215
+ AssignmentExpression(path) {
216
+ const node = path.node;
217
+ if (node.type !== "AssignmentExpression") return;
218
+ if (node.operator !== "=" && node.operator !== "||=" && node.operator !== "??=") return;
219
+ if (node.left.type !== "Identifier") return;
220
+ if (exprIsTainted(node.right)) {
221
+ tainted.add(node.left.name);
222
+ }
223
+ }
224
+ });
225
+ const isTainted = (node) => {
226
+ if (!node) return false;
227
+ if (node.type === "Identifier") return tainted.has(node.name);
228
+ if (nodeIsTaintedSource(node)) return true;
229
+ if (node.type === "TemplateLiteral") {
230
+ return node.expressions.some((e) => isTainted(e));
231
+ }
232
+ if (node.type === "BinaryExpression" && node.operator === "+") {
233
+ return isTainted(node.left) || isTainted(node.right);
234
+ }
235
+ if (node.type === "LogicalExpression" && (node.operator === "||" || node.operator === "??" || node.operator === "&&")) {
236
+ return isTainted(node.left) || isTainted(node.right);
237
+ }
238
+ if (node.type === "ConditionalExpression") {
239
+ return isTainted(node.consequent) || isTainted(node.alternate);
240
+ }
241
+ if (node.type === "AwaitExpression") {
242
+ return isTainted(node.argument);
243
+ }
244
+ if (node.type === "MemberExpression") {
245
+ return isTainted(node.object);
246
+ }
247
+ if (node.type === "CallExpression") {
248
+ if (node.callee.type === "MemberExpression") {
249
+ if (isTainted(node.callee.object)) return true;
250
+ const obj = node.callee.object;
251
+ const prop = node.callee.property;
252
+ if (prop.type === "Identifier" && obj.type === "Identifier" && obj.name === "path" && ["join", "resolve", "normalize", "format", "relative", "parse"].includes(prop.name)) {
253
+ return node.arguments.some((a) => a.type !== "SpreadElement" && isTainted(a));
254
+ }
255
+ if (prop.type === "Identifier" && obj.type === "Identifier" && obj.name === "Buffer" && ["from", "concat", "alloc", "allocUnsafe"].includes(prop.name)) {
256
+ return node.arguments.some((a) => a.type !== "SpreadElement" && isTainted(a));
257
+ }
258
+ }
259
+ if (node.callee.type === "Identifier") {
260
+ if (["String", "Number", "Boolean", "URL", "URLSearchParams"].includes(node.callee.name)) {
261
+ return node.arguments.some((a) => a.type !== "SpreadElement" && isTainted(a));
262
+ }
263
+ }
264
+ }
265
+ return false;
266
+ };
267
+ return {
268
+ isTainted,
269
+ isTaintedIdent: (name) => tainted.has(name),
270
+ taintedNames: () => Array.from(tainted)
271
+ };
272
+ }
273
+
274
+ // src/ast/traverse.ts
275
+ import _traverse2 from "@babel/traverse";
276
+ var traverse2 = typeof _traverse2 === "function" ? _traverse2 : _traverse2.default;
277
+ function visitBinary(parsed, visit) {
278
+ traverse2(parsed.ast, {
279
+ BinaryExpression(path) {
280
+ const line = path.node.loc?.start.line ?? 1;
281
+ visit(path.node, line);
282
+ }
283
+ });
284
+ }
285
+ function visitCalls(parsed, matchCallee, visit) {
286
+ traverse2(parsed.ast, {
287
+ CallExpression(path) {
288
+ const node = path.node;
289
+ if (!matchCallee(node.callee)) return;
290
+ const line = node.loc?.start.line ?? 1;
291
+ visit(node, line);
292
+ }
293
+ });
294
+ }
295
+ function isCalleeNamed(callee, name) {
296
+ if (callee.type === "Identifier") return callee.name === name;
297
+ if (callee.type === "MemberExpression" && callee.property.type === "Identifier") {
298
+ return callee.property.name === name;
299
+ }
300
+ if (callee.type === "OptionalMemberExpression" && callee.property.type === "Identifier") {
301
+ return callee.property.name === name;
302
+ }
303
+ return false;
304
+ }
305
+ function isMethodCall(callee, objName, methodName) {
306
+ if (callee.type !== "MemberExpression" && callee.type !== "OptionalMemberExpression") {
307
+ return false;
308
+ }
309
+ if (callee.property.type !== "Identifier") return false;
310
+ if (callee.property.name !== methodName) return false;
311
+ if (callee.object.type !== "Identifier") return false;
312
+ return callee.object.name === objName;
313
+ }
314
+ function getObjectProperty(node, key) {
315
+ for (const prop of node.properties) {
316
+ if (prop.type === "ObjectProperty") {
317
+ if (prop.key.type === "Identifier" && prop.key.name === key) {
318
+ return { value: prop.value };
319
+ }
320
+ if (prop.key.type === "StringLiteral" && prop.key.value === key) {
321
+ return { value: prop.value };
322
+ }
323
+ }
324
+ }
325
+ return null;
326
+ }
327
+ function callSpreads(call, matcher) {
328
+ for (const arg of call.arguments) {
329
+ if (arg.type === "SpreadElement") {
330
+ if (matcher(arg.argument)) return true;
331
+ }
332
+ if (arg.type === "ObjectExpression") {
333
+ for (const prop of arg.properties) {
334
+ if (prop.type === "SpreadElement") {
335
+ if (matcher(prop.argument)) return true;
336
+ }
337
+ }
338
+ }
339
+ }
340
+ return false;
341
+ }
342
+
13
343
  // src/rules.ts
14
344
  var TEST_FILE_PATTERN = /(?:\.test\.|\.spec\.|__tests__|__mocks__|\.stories\.|\.story\.|\/test\/|\/tests\/|\/fixtures?\/|\/mocks?\/|\.mock\.|test-utils|testing|\.cy\.|\.e2e\.)/i;
15
345
  function isTestFile(filePath) {
16
346
  return TEST_FILE_PATTERN.test(filePath);
17
347
  }
348
+ var SERVER_SIDE_PATH_RE = new RegExp(
349
+ [
350
+ // Directory-style anchors — match with OR without leading slash so
351
+ // relative paths (`routes/users.js`) work as well as absolute.
352
+ "(?:^|/)api/",
353
+ "(?:^|/)routes?/",
354
+ "(?:^|/)controllers?/",
355
+ "(?:^|/)endpoints?/",
356
+ "(?:^|/)handlers?/",
357
+ "(?:^|/)middleware/",
358
+ "(?:^|/)webhooks?/",
359
+ "(?:^|/)services?/",
360
+ "(?:^|/)lambda/",
361
+ "(?:^|/)functions?/",
362
+ "(?:^|/)pages/api/",
363
+ "(?:^|/)app/.*/route\\.(?:m?[jt]sx?|cjs)$",
364
+ // Bare-filename anchors (with or without leading directory).
365
+ // Allows compound names like webhook-handler.js, cron-runner.js,
366
+ // user-service.ts via the optional (?:[-_]\w+)* suffix group.
367
+ "(?:^|/)(?:api|routes?|controllers?|endpoints?|handlers?|middleware|webhooks?|services?|server|app|index|main|lambda|function|ingest|runner|worker|resolvers?)(?:[-_]\\w+)*\\.(?:m?[jt]sx?|cjs|py|rb|go)$",
368
+ // Common functional names that imply request handling.
369
+ "(?:^|/)(?:auth|login|logout|signup|signin|register|password|reset|callback|oauth|admin|dashboard|profile|account|checkout|payment|webhook|audit|cron|search|upload|download|errors?|create-?\\w*|update-?\\w*|delete-?\\w*)(?:[-_]\\w+)*\\.(?:m?[jt]sx?|cjs|py|rb|go)$"
370
+ ].join("|"),
371
+ "i"
372
+ );
373
+ function isServerSideFile(filePath) {
374
+ if (isTestFile(filePath)) return false;
375
+ return SERVER_SIDE_PATH_RE.test(filePath);
376
+ }
377
+ var CONFIG_FILE_PATTERN = new RegExp(
378
+ [
379
+ "\\.config\\.(?:m?[jt]sx?|cjs)$",
380
+ "(?:^|/)config\\.(?:m?[jt]sx?|cjs|py|rb|json|ya?ml)$",
381
+ "(?:^|/)settings\\.(?:m?[jt]sx?|cjs|py)$",
382
+ "(?:^|/)\\.env(?:\\.|$)",
383
+ "(?:^|/)(?:knex|drizzle|next|vite|rollup|webpack|tailwind|postcss|jest|vitest|tsup|babel)\\.config\\.(?:m?[jt]sx?|cjs)$",
384
+ "(?:^|/)(?:db|database|connection|pool)\\.(?:config\\.)?(?:m?[jt]sx?|cjs|py|rb)$"
385
+ ].join("|"),
386
+ "i"
387
+ );
18
388
  function isCommentLine(content, matchIndex) {
19
389
  const lineStart = content.lastIndexOf("\n", matchIndex - 1) + 1;
20
390
  const lineText = content.substring(lineStart, content.indexOf("\n", matchIndex)).trimStart();
@@ -23,7 +393,7 @@ function isCommentLine(content, matchIndex) {
23
393
  function isInsideFixMessage(content, matchIndex) {
24
394
  const lineStart = content.lastIndexOf("\n", matchIndex - 1) + 1;
25
395
  const lineText = content.substring(lineStart, content.indexOf("\n", matchIndex));
26
- return /(?:fix|description|message|suggestion|hint|help|example|doc|comment)\s*[:=(]/i.test(lineText) || /return\s*["'`].*(?:Use|Replace|Add|Move|Set|Enable|Disable|Never|Don't|Do not|Instead)/i.test(lineText);
396
+ return /(?:fix|description|message|suggestion|hint|help|example|doc|comment)\s*[:=(]/i.test(lineText) || /return\s*["'`].*\b(?:Use|Replace|Add|Move|Set|Enable|Disable|Never|Don't|Do not|Instead)\b/i.test(lineText);
27
397
  }
28
398
  function findMatches(content, pattern, rule, filePath, fixTemplate) {
29
399
  const matches = [];
@@ -47,6 +417,23 @@ function findMatches(content, pattern, rule, filePath, fixTemplate) {
47
417
  }
48
418
  return matches;
49
419
  }
420
+ function astMatch(content, filePath, line, rule, fix) {
421
+ return {
422
+ rule: rule.id,
423
+ title: rule.title,
424
+ severity: rule.severity,
425
+ category: rule.category,
426
+ file: filePath,
427
+ line,
428
+ snippet: getSnippet(content, line),
429
+ fix
430
+ };
431
+ }
432
+ function tryParse(content, filePath) {
433
+ const parsed = parseFile(content, filePath);
434
+ if (!parsed) return null;
435
+ return { parsed, taint: buildTaintMap(parsed) };
436
+ }
50
437
  var hardcodedSecrets = {
51
438
  id: "VC001",
52
439
  title: "Hardcoded API Key or Secret",
@@ -70,6 +457,17 @@ var hardcodedSecrets = {
70
457
  /sk-[a-zA-Z0-9]{20,}T3BlbkFJ[a-zA-Z0-9]{20,}/g,
71
458
  // Generic tokens in assignments — require standalone word and longer min length
72
459
  /(?:^|[\s,({])(?:token|secret|password|passwd|pwd)\s*[:=]\s*["'`]([a-zA-Z0-9_\-!@#$%^&*]{20,})["'`]/gim,
460
+ // SCREAMING_CASE identifiers ending in SECRET/TOKEN/KEY/PASSWORD
461
+ // (OAUTH_CLIENT_SECRET, JWT_PRIVATE_KEY, STRIPE_WEBHOOK_SECRET, etc.)
462
+ // that are assigned a string literal, not an env var or function call.
463
+ /[A-Z][A-Z0-9_]*_(?:SECRET|TOKEN|KEY|PASSWORD|PASSWD)\s*[:=]\s*["'`]([a-zA-Z0-9_\-!@#$%^&*.\/]{12,})["'`]/g,
464
+ // camelCase / snake_case object properties that look like credentials:
465
+ // apiKey: "...", webhookUrl: "https://...", accountSid: "...", authToken: "..."
466
+ // password: "..." caught here separately with a lower threshold (many
467
+ // real passwords are 8-16 chars, below the 12-char floor of the
468
+ // generic `secret = "..."` pattern).
469
+ /\b(?:apiKey|api_key|authToken|auth_token|webhookUrl|webhook_url|accountSid|account_sid|clientSecret|client_secret|refreshToken|refresh_token)\s*:\s*["'`]([a-zA-Z0-9_\-!@#$%^&*.\/:\-]{12,})["'`]/gi,
470
+ /\b(?:password|passwd|pwd)\s*:\s*["'`]([a-zA-Z0-9_\-!@#$%^&*.\/:\-]{8,})["'`]/gi,
73
471
  // Private keys
74
472
  /-----BEGIN (?:RSA |EC |DSA )?PRIVATE KEY-----/g,
75
473
  // Database URLs with credentials
@@ -82,19 +480,49 @@ var hardcodedSecrets = {
82
480
  "Supabase key detected. Service role keys bypass Row Level Security and grant full database read/write access. Move to a server-side environment variable immediately.",
83
481
  "OpenAI API key detected \u2014 grants full API access and can incur charges. Rotate at platform.openai.com \u2192 API Keys.",
84
482
  "Hardcoded token or password detected. Move to an environment variable and rotate the credential if it has been committed to version control.",
483
+ "Named secret constant detected (XXX_SECRET / XXX_TOKEN / XXX_KEY). Move to an environment variable: `const NAME = process.env.NAME;`. Rotate the credential if this file has been committed to version control.",
484
+ "Credential assigned to a config object property. Move to an environment variable \u2014 `apiKey: process.env.API_KEY` \u2014 and rotate the value if this file has been committed.",
485
+ "Hardcoded password detected in a config object. Move to an environment variable (`password: process.env.DB_PASSWORD`) and rotate the password if this file has been committed.",
85
486
  "Private key found in source code. If this has been committed to version control, consider the key compromised \u2014 generate a new key pair and revoke the old one.",
86
487
  "Database credentials in connection string. An attacker with this URL has full database access. Move to an environment variable, restrict network access, and rotate the password."
87
488
  ];
489
+ const minLen = [
490
+ 12,
491
+ // [0] generic API key
492
+ 16,
493
+ // [1] AWS — already rigid in the regex, length floor is defensive
494
+ 20,
495
+ // [2] Stripe
496
+ 50,
497
+ // [3] Supabase JWT
498
+ 40,
499
+ // [4] OpenAI
500
+ 20,
501
+ // [5] generic tokens with {20,} in the regex
502
+ 12,
503
+ // [6] SCREAMING_CASE named constants
504
+ 12,
505
+ // [7] camelCase config props (apiKey/webhookUrl/etc.)
506
+ 8,
507
+ // [8] password: "..." — lower floor per the pattern comment above
508
+ 0,
509
+ // [9] private keys — no length check
510
+ 0
511
+ // [10] DB URLs — no length check
512
+ ];
88
513
  const matches = [];
89
514
  for (let pi = 0; pi < patterns.length; pi++) {
90
515
  const pattern = patterns[pi];
91
516
  const rawMatches = findMatches(content, pattern, hardcodedSecrets, filePath, () => fixMessages[pi]);
517
+ const floor = minLen[pi] ?? 12;
92
518
  for (const rm of rawMatches) {
93
519
  const lineText = content.split("\n")[rm.line - 1] || "";
94
520
  const trimmed = lineText.trimStart();
95
521
  if (trimmed.startsWith("//") || trimmed.startsWith("#")) continue;
96
- const secretMatch = lineText.match(/[:=]\s*["'`]([^"'`]*)["'`]/);
97
- if (secretMatch && secretMatch[1].length < 12) continue;
522
+ if (floor > 0) {
523
+ const secretMatch = lineText.match(/[:=]\s*["'`]([^"'`]*)["'`]/);
524
+ if (secretMatch && secretMatch[1].length < floor) continue;
525
+ }
98
526
  matches.push(rm);
99
527
  }
100
528
  }
@@ -130,8 +558,7 @@ var missingAuthMiddleware = {
130
558
  category: "Authentication",
131
559
  description: "API routes without authentication checks allow unauthorized access.",
132
560
  check(content, filePath) {
133
- const isApiRoute = /(?:\/api\/|routes?\/|controllers?\/|endpoints?\/)/.test(filePath) || filePath.includes("server.");
134
- if (!isApiRoute) return [];
561
+ if (!isServerSideFile(filePath)) return [];
135
562
  const routePatterns = [
136
563
  // Express/Hono style
137
564
  /\.(get|post|put|patch|delete)\s*\(\s*["'`][^"'`]+["'`]\s*,\s*(?:async\s+)?\(?(?:req|c|ctx)/gi,
@@ -144,35 +571,36 @@ var missingAuthMiddleware = {
144
571
  if (isAuthRoute) return [];
145
572
  const isWebhookRoute = /\/webhook/i.test(filePath);
146
573
  if (isWebhookRoute) return [];
574
+ const codeOnly = content.replace(/\/\*[\s\S]*?\*\//g, "").replace(/(^|[^:])\/\/.*$/gm, "$1").replace(/^\s*#.*$/gm, "");
147
575
  const authPatterns = [
148
- /auth/i,
149
- /session/i,
150
- /jwt/i,
151
- /bearer/i,
152
- /middleware/i,
153
- /getUser/i,
154
- /currentUser/i,
155
- /isAuthenticated/i,
156
- /requireAuth/i,
157
- /requireUser/i,
158
- /requireUserForApi/i,
159
- /clerk/i,
576
+ /\bgetUser\b/i,
577
+ /\bcurrentUser\b/i,
578
+ /\bisAuthenticated\b/i,
579
+ /\brequireAuth\b/i,
580
+ /\brequireUser\b/i,
581
+ /\brequireUserForApi\b/i,
582
+ /\bwithAuth\b/i,
583
+ /\bgetServerSession\b/i,
584
+ /\bgetToken\b/i,
585
+ /\bverifyToken\b/i,
586
+ /\bvalidateToken\b/i,
587
+ /\bcheckApiKey\b/i,
588
+ /\bverifyCronSecret\b/i,
589
+ /\bverifySecret\b/i,
160
590
  /supabase\.auth/i,
161
- /getServerSession/i,
162
- /getToken/i,
163
- /protect/i,
164
- /guard/i,
165
- /verifyToken/i,
166
- /validateToken/i,
167
- /withAuth/i,
168
- /passport/i,
169
591
  /firebase\.auth/i,
170
- /cognito/i,
171
- /verifyCronSecret/i,
172
- /verifySecret/i,
173
- /checkApiKey/i
592
+ /\bclerk\b/i,
593
+ /\bpassport\b/i,
594
+ /\bcognito\b/i,
595
+ /\bauth\(\)/i,
596
+ /req\.user\b/i,
597
+ /req\.session\.\w+/i,
598
+ /\bjwt\.verify\b/i,
599
+ /\bbearer\s/i,
600
+ /\b(?:protect|guard)\(/i,
601
+ /\.use\([^)]*(?:auth|session|protect|requireAuth)/i
174
602
  ];
175
- const hasAuth = authPatterns.some((p) => p.test(content));
603
+ const hasAuth = authPatterns.some((p) => p.test(codeOnly));
176
604
  if (hasAuth) return [];
177
605
  const matches = [];
178
606
  for (const pattern of routePatterns) {
@@ -347,6 +775,37 @@ var xssVulnerability = {
347
775
  matches.push(m);
348
776
  }
349
777
  }
778
+ if (!/\.(?:send|end|write)\s*\(/.test(content) || !/\$\{/.test(content)) {
779
+ return matches;
780
+ }
781
+ const ctx = tryParse(content, filePath);
782
+ if (!ctx) return matches;
783
+ const { parsed, taint } = ctx;
784
+ visitCalls(
785
+ parsed,
786
+ (callee) => {
787
+ if (callee.type !== "MemberExpression") return false;
788
+ if (callee.property.type !== "Identifier") return false;
789
+ return ["send", "end", "write"].includes(callee.property.name);
790
+ },
791
+ (call, line) => {
792
+ const first = call.arguments[0];
793
+ if (!first || first.type !== "TemplateLiteral") return;
794
+ const literalParts = first.quasis.map((q) => q.value.raw).join("");
795
+ if (!/<\/?\w+/.test(literalParts)) return;
796
+ if (!taint.isTainted(first)) return;
797
+ if (matches.some((m) => m.line === line)) return;
798
+ matches.push(
799
+ astMatch(
800
+ content,
801
+ filePath,
802
+ line,
803
+ xssVulnerability,
804
+ "Never echo user-supplied HTML back to the browser unescaped. Sanitize with DOMPurify, use a templating engine that auto-escapes, or set `res.type('text/plain')` if you never intended HTML."
805
+ )
806
+ );
807
+ }
808
+ );
350
809
  return matches;
351
810
  }
352
811
  };
@@ -800,7 +1259,7 @@ var prototypePollution = {
800
1259
  title: "Prototype Pollution Risk",
801
1260
  severity: "high",
802
1261
  category: "Injection",
803
- description: "Parsing JSON from localStorage, URL params, or external sources and merging it into objects without validation can lead to prototype pollution, allowing attackers to inject __proto__ or constructor properties.",
1262
+ description: "Deep-merging or Object.assign-ing attacker-controlled data (request bodies, parsed localStorage, query params) into a host object can pollute Object.prototype via keys like __proto__ and constructor.prototype.",
804
1263
  check(content, filePath) {
805
1264
  const matches = [];
806
1265
  const storageParsePatterns = [
@@ -808,26 +1267,70 @@ var prototypePollution = {
808
1267
  /JSON\.parse\s*\(\s*window\.localStorage/g
809
1268
  ];
810
1269
  const hasValidation = /schema|validate|sanitize|whitelist|allowedKeys|pick\(|Object\.freeze|zod|yup|joi|ajv/i.test(content);
811
- if (hasValidation) return [];
812
- const hasUnsafeMerge = /Object\.assign\s*\([^)]*JSON\.parse|\.\.\.JSON\.parse|\{.*\.\.\.(?:stored|saved|cached|parsed|data)/i.test(content);
813
- if (hasUnsafeMerge) {
814
- matches.push(...findMatches(
815
- content,
816
- /Object\.assign\s*\([^)]*JSON\.parse|\.\.\.JSON\.parse/g,
817
- prototypePollution,
818
- filePath,
819
- () => "Validate parsed data against an expected schema before merging into objects. Use Object.freeze(), a validation library (Zod, Yup), or manually check for __proto__ and constructor keys."
820
- ));
821
- }
822
- for (const p of storageParsePatterns) {
823
- matches.push(...findMatches(
824
- content,
825
- p,
826
- prototypePollution,
827
- filePath,
828
- () => "Validate localStorage data against an expected schema before using it. Malicious extensions or XSS can modify localStorage values."
829
- ));
1270
+ if (!hasValidation) {
1271
+ const hasUnsafeMerge = /Object\.assign\s*\([^)]*JSON\.parse|\.\.\.JSON\.parse|\{.*\.\.\.(?:stored|saved|cached|parsed|data)/i.test(content);
1272
+ if (hasUnsafeMerge) {
1273
+ matches.push(...findMatches(
1274
+ content,
1275
+ /Object\.assign\s*\([^)]*JSON\.parse|\.\.\.JSON\.parse/g,
1276
+ prototypePollution,
1277
+ filePath,
1278
+ () => "Validate parsed data against an expected schema before merging into objects. Use Object.freeze(), a validation library (Zod, Yup), or manually check for __proto__ and constructor keys."
1279
+ ));
1280
+ }
1281
+ for (const p of storageParsePatterns) {
1282
+ matches.push(...findMatches(
1283
+ content,
1284
+ p,
1285
+ prototypePollution,
1286
+ filePath,
1287
+ () => "Validate localStorage data against an expected schema before using it. Malicious extensions or XSS can modify localStorage values."
1288
+ ));
1289
+ }
830
1290
  }
1291
+ if (!/\b(?:merge|assign|extend|defaults)\s*\(/.test(content)) return matches;
1292
+ const ctx = tryParse(content, filePath);
1293
+ if (!ctx) return matches;
1294
+ const { parsed, taint } = ctx;
1295
+ const ALL_ARG_SINKS = [
1296
+ { obj: "_", method: "merge" },
1297
+ { obj: "lodash", method: "merge" },
1298
+ { method: "merge" },
1299
+ // bare `merge(target, src)` from ESM import
1300
+ { obj: "_", method: "defaultsDeep" },
1301
+ { obj: "lodash", method: "defaultsDeep" },
1302
+ { obj: "Object", method: "assign" },
1303
+ { method: "extend" },
1304
+ // jquery/underscore style
1305
+ { obj: "$", method: "extend" }
1306
+ ];
1307
+ visitCalls(
1308
+ parsed,
1309
+ (callee) => {
1310
+ for (const sink of ALL_ARG_SINKS) {
1311
+ if (sink.obj && isMethodCall(callee, sink.obj, sink.method)) return true;
1312
+ if (!sink.obj && isCalleeNamed(callee, sink.method)) return true;
1313
+ }
1314
+ return false;
1315
+ },
1316
+ (call, line) => {
1317
+ const sources = call.arguments.slice(1);
1318
+ const tainted = sources.some((arg) => {
1319
+ if (arg.type === "SpreadElement") return taint.isTainted(arg.argument);
1320
+ return taint.isTainted(arg);
1321
+ });
1322
+ if (!tainted) return;
1323
+ matches.push(
1324
+ astMatch(
1325
+ content,
1326
+ filePath,
1327
+ line,
1328
+ prototypePollution,
1329
+ "Filter __proto__, constructor, and prototype keys before merging user-supplied data into an object. Prefer lodash.mergeWith() with a customizer that returns undefined for those keys, or validate the source with a schema library (Zod, Yup, Joi, Ajv) first."
1330
+ )
1331
+ );
1332
+ }
1333
+ );
831
1334
  return matches;
832
1335
  }
833
1336
  };
@@ -860,13 +1363,13 @@ var unsanitizedFilenames = {
860
1363
  description: "Using user-supplied filenames without sanitization in file operations can enable path traversal, overwriting system files, or executing commands via special characters.",
861
1364
  check(content, filePath) {
862
1365
  const matches = [];
1366
+ const hasSanitization = /sanitize|cleanFilename|safeFilename|replace\s*\(\s*\/\[.*\]\/|\.startsWith\s*\(\s*(?:UPLOADS_DIR|\w+_DIR)/i.test(content);
1367
+ if (hasSanitization) return [];
863
1368
  const patterns = [
864
1369
  /(?:writeFile|writeFileSync|createWriteStream|rename|copyFile)\s*\(\s*(?:`[^`]*\$\{|[^"'`\s,]+\s*\+)/g,
865
1370
  /(?:dialog\.showSaveDialog|saveDialog).*(?:defaultPath|fileName)\s*:\s*(?!["'`])/g,
866
1371
  /\.download\s*=\s*(?!["'`])/g
867
1372
  ];
868
- const hasSanitization = /sanitize|cleanFilename|safeFilename|replace\s*\(\s*\/\[.*\]\//i.test(content);
869
- if (hasSanitization) return [];
870
1373
  for (const p of patterns) {
871
1374
  matches.push(...findMatches(
872
1375
  content,
@@ -876,6 +1379,61 @@ var unsanitizedFilenames = {
876
1379
  () => "Sanitize filenames before use: strip path separators (/ \\), special chars, and '..' sequences. Example: name.replace(/[^a-zA-Z0-9._-]/g, '_')"
877
1380
  ));
878
1381
  }
1382
+ if (!/\b(?:fs|fsPromises)\.(?:readFile|writeFile|appendFile|readFileSync|writeFileSync|appendFileSync|createReadStream|createWriteStream|unlink|unlinkSync|stat|statSync|rm|rmSync|mkdir|mkdirSync)\s*\(/.test(content)) {
1383
+ return matches;
1384
+ }
1385
+ const ctx = tryParse(content, filePath);
1386
+ if (!ctx) return matches;
1387
+ const { parsed, taint } = ctx;
1388
+ const FS_SINKS = /* @__PURE__ */ new Set([
1389
+ "readFile",
1390
+ "writeFile",
1391
+ "appendFile",
1392
+ "readFileSync",
1393
+ "writeFileSync",
1394
+ "appendFileSync",
1395
+ "createReadStream",
1396
+ "createWriteStream",
1397
+ "unlink",
1398
+ "unlinkSync",
1399
+ "rm",
1400
+ "rmSync",
1401
+ "stat",
1402
+ "statSync",
1403
+ "mkdir",
1404
+ "mkdirSync"
1405
+ ]);
1406
+ const isFsReceiver = (obj) => {
1407
+ if (obj.type === "Identifier") return obj.name === "fs" || obj.name === "fsPromises";
1408
+ if (obj.type === "MemberExpression") {
1409
+ return obj.object.type === "Identifier" && obj.object.name === "fs" && obj.property.type === "Identifier" && obj.property.name === "promises";
1410
+ }
1411
+ return false;
1412
+ };
1413
+ visitCalls(
1414
+ parsed,
1415
+ (callee) => {
1416
+ if (callee.type !== "MemberExpression") return false;
1417
+ if (callee.property.type !== "Identifier") return false;
1418
+ if (!FS_SINKS.has(callee.property.name)) return false;
1419
+ return isFsReceiver(callee.object);
1420
+ },
1421
+ (call, line) => {
1422
+ const first = call.arguments[0];
1423
+ if (!first || first.type === "SpreadElement") return;
1424
+ if (!taint.isTainted(first)) return;
1425
+ if (matches.some((m) => m.line === line)) return;
1426
+ matches.push(
1427
+ astMatch(
1428
+ content,
1429
+ filePath,
1430
+ line,
1431
+ unsanitizedFilenames,
1432
+ "Resolve the path against a fixed base directory and verify it stays within that base before the fs call: `const target = path.resolve(BASE, req.body.name); if (!target.startsWith(BASE + path.sep)) throw new Error('path traversal');`"
1433
+ )
1434
+ );
1435
+ }
1436
+ );
879
1437
  return matches;
880
1438
  }
881
1439
  };
@@ -1026,8 +1584,9 @@ var insecureDeserialization = {
1026
1584
  /unserialize\s*\(/g,
1027
1585
  // Ruby Marshal
1028
1586
  /Marshal\.load\s*\(/g,
1029
- // YAML unsafe load (Python)
1030
- /yaml\.load\s*\([^)]*(?!Loader\s*=\s*yaml\.SafeLoader)/g,
1587
+ // YAML unsafe load (Python + js-yaml). Filtered below so safe schema
1588
+ // arguments (SAFE_SCHEMA, FAILSAFE_SCHEMA, yaml.SafeLoader) don't FP.
1589
+ /yaml\.load\s*\(/g,
1031
1590
  /yaml\.unsafe_load\s*\(/g,
1032
1591
  // Java ObjectInputStream
1033
1592
  /ObjectInputStream\s*\(/g,
@@ -1043,7 +1602,20 @@ var insecureDeserialization = {
1043
1602
  () => "Never deserialize untrusted data. Use JSON instead of pickle/Marshal/unserialize. For YAML, use yaml.safe_load(). Validate and sanitize all input before deserialization."
1044
1603
  ));
1045
1604
  }
1046
- return matches;
1605
+ return matches.filter((m) => {
1606
+ if (!/yaml\.load\s*\(/.test(m.snippet ?? "")) return true;
1607
+ const lineText = (m.snippet ?? "").toLowerCase();
1608
+ if (/safe_schema|failsafe_schema|safe_load|safeloader/.test(lineText)) {
1609
+ return false;
1610
+ }
1611
+ const lineIdx = m.line - 1;
1612
+ const lines = content.split("\n");
1613
+ const ctx = lines.slice(lineIdx, lineIdx + 3).join("\n").toLowerCase();
1614
+ if (/safe_schema|failsafe_schema|safe_load|safeloader/.test(ctx)) {
1615
+ return false;
1616
+ }
1617
+ return true;
1618
+ });
1047
1619
  }
1048
1620
  };
1049
1621
  var hardcodedJWTSecret = {
@@ -1121,7 +1693,12 @@ var exposedDebugMode = {
1121
1693
  /app\.debug\s*=\s*True/g,
1122
1694
  /app\.run\s*\([^)]*debug\s*=\s*True/g,
1123
1695
  // Source maps in production
1124
- /devtool\s*:\s*["'`](?:eval|cheap|source-map|inline-source-map)["'`]/g
1696
+ /devtool\s*:\s*["'`](?:eval|cheap|source-map|inline-source-map)["'`]/g,
1697
+ // Debug endpoints that leak environment / process internals in the
1698
+ // response body. Very high-signal — a production service shouldn't
1699
+ // serialize process.env or process.version to callers.
1700
+ /res\.(?:json|send)\s*\([^)]*process\.(?:env|version|pid|arch|platform)/gi,
1701
+ /(?:env|environment)\s*:\s*process\.env\b/gi
1125
1702
  ];
1126
1703
  for (const p of patterns) {
1127
1704
  matches.push(...findMatches(
@@ -1159,6 +1736,21 @@ var insecureRandomness = {
1159
1736
  if (nonSecurityVarNames.test(lineText)) continue;
1160
1737
  matches.push(rm);
1161
1738
  }
1739
+ const SECURITY_FN_CONTEXT = /\b(?:function|def|async|const|let|var)\s+\w*(?:generate|create|make|new|mint|issue)[A-Z_]\w*(?:Token|Session|Nonce|Salt|Secret|Password|Otp|Csrf|Key|Code|Auth)\w*/i;
1740
+ const SECURITY_IDENT_CONTEXT = /\b(?:session[_-]?token|csrf[_-]?token|reset[_-]?token|verify[_-]?code|otp[_-]?code|refresh[_-]?token|api[_-]?key)\b/i;
1741
+ if (SECURITY_FN_CONTEXT.test(content) || SECURITY_IDENT_CONTEXT.test(content)) {
1742
+ const raw = findMatches(
1743
+ content,
1744
+ /Math\.random\s*\(\s*\)/g,
1745
+ insecureRandomness,
1746
+ filePath,
1747
+ () => "Math.random() is not cryptographically secure. Use crypto.randomBytes() (Node), crypto.getRandomValues() (browser), or crypto.randomUUID() for tokens, session IDs, salts, and similar values."
1748
+ );
1749
+ for (const m of raw) {
1750
+ if (matches.some((existing) => existing.line === m.line)) continue;
1751
+ matches.push(m);
1752
+ }
1753
+ }
1162
1754
  return matches;
1163
1755
  }
1164
1756
  };
@@ -1170,13 +1762,13 @@ var openRedirectParams = {
1170
1762
  description: "Redirect parameters like ?redirect_url=, ?return_to=, ?next= passed directly to redirects enable phishing attacks.",
1171
1763
  check(content, filePath) {
1172
1764
  const matches = [];
1765
+ const codeOnly = content.replace(/\/\*[\s\S]*?\*\//g, "").replace(/(^|[^:])\/\/.*$/gm, "$1");
1766
+ const hasValidation = /allowed[_-]?(?:urls?|domains?|hosts?|paths?|routes?|list)|allow[_-]?list|valid[_-]?url|safe[_-]?domain|whitelist|startsWith.*https|new URL.*hostname/i.test(codeOnly);
1767
+ if (hasValidation) return [];
1173
1768
  const patterns = [
1174
- // Reading redirect-like query params and using in redirect
1175
1769
  /(?:redirect_url|redirect_uri|return_to|return_url|next|callback_url|continue|goto|target|dest|destination|forward|redir)\s*(?:=|:)\s*(?:req\.query|req\.params|searchParams|query|params)\./gi,
1176
1770
  /redirect\s*\(\s*(?:req\.query|req\.params|searchParams\.get)\s*\(\s*["'`](?:redirect|return|next|callback|url|goto)/gi
1177
1771
  ];
1178
- const hasValidation = /allowedUrls|allowedDomains|allowedHosts|validUrl|safeDomain|whitelist|startsWith.*https|new URL.*hostname/i.test(content);
1179
- if (hasValidation) return [];
1180
1772
  for (const p of patterns) {
1181
1773
  matches.push(...findMatches(
1182
1774
  content,
@@ -1186,6 +1778,29 @@ var openRedirectParams = {
1186
1778
  () => "Validate redirect URLs against an allowlist of trusted domains. Use: const url = new URL(input); if (!ALLOWED_HOSTS.includes(url.hostname)) reject."
1187
1779
  ));
1188
1780
  }
1781
+ if (!/\.redirect\s*\(/.test(content)) return matches;
1782
+ const ctx = tryParse(content, filePath);
1783
+ if (!ctx) return matches;
1784
+ const { parsed, taint } = ctx;
1785
+ visitCalls(
1786
+ parsed,
1787
+ (callee) => isCalleeNamed(callee, "redirect"),
1788
+ (call, line) => {
1789
+ const first = call.arguments[0];
1790
+ if (!first || first.type === "SpreadElement") return;
1791
+ if (!taint.isTainted(first)) return;
1792
+ if (matches.some((m) => m.line === line)) return;
1793
+ matches.push(
1794
+ astMatch(
1795
+ content,
1796
+ filePath,
1797
+ line,
1798
+ openRedirectParams,
1799
+ "Validate redirect targets against an allowlist before calling res.redirect(). `const ALLOWED = new Set(['/dashboard', '/settings']); if (!ALLOWED.has(next)) return res.redirect('/dashboard');`"
1800
+ )
1801
+ );
1802
+ }
1803
+ );
1189
1804
  return matches;
1190
1805
  }
1191
1806
  };
@@ -1228,8 +1843,7 @@ var exposedStackTraces = {
1228
1843
  category: "Information Leakage",
1229
1844
  description: "Returning error.stack or detailed error messages in API responses reveals internal code paths, file structure, and dependencies to attackers.",
1230
1845
  check(content, filePath) {
1231
- const isApiFile = /(?:\/api\/|routes?\/|controllers?\/|server\.|middleware)/i.test(filePath);
1232
- if (!isApiFile) return [];
1846
+ if (!isServerSideFile(filePath)) return [];
1233
1847
  const matches = [];
1234
1848
  const patterns = [
1235
1849
  // Sending stack trace in response
@@ -1260,9 +1874,10 @@ var insecureFileUpload = {
1260
1874
  description: "File uploads validated only by extension (not MIME type or content) allow attackers to upload executable files disguised as images or documents.",
1261
1875
  check(content, filePath) {
1262
1876
  if (!/upload|multer|formidable|busboy|multipart/i.test(content)) return [];
1877
+ const codeOnly = content.replace(/\/\*[\s\S]*?\*\//g, "").replace(/(^|[^:])\/\/.*$/gm, "$1").replace(/^\s*#.*$/gm, "");
1263
1878
  const matches = [];
1264
- const hasExtCheck = /\.(?:endsWith|match|test)\s*\([^)]*(?:\.jpg|\.png|\.pdf|\.doc|ext)/i.test(content);
1265
- const hasMimeCheck = /mimetype|content-type|file\.type|mime|magic\.detect|file-type/i.test(content);
1879
+ const hasExtCheck = /\.(?:endsWith|match|test)\s*\([^)]*(?:\.jpg|\.png|\.pdf|\.doc|ext)/i.test(codeOnly) || /\/\\\.\((?:\?:)?[a-z]{2,5}(?:\|[a-z]{2,5})+\)/i.test(codeOnly);
1880
+ const hasMimeCheck = /\bmimetype\b|\bcontent-type\b|\bfile\.type\b|\bmime\.\w|\bmagic\.detect\b|\bfile-type\b|fileTypeFromBuffer/i.test(codeOnly);
1266
1881
  if (hasExtCheck && !hasMimeCheck) {
1267
1882
  matches.push(...findMatches(
1268
1883
  content,
@@ -1326,34 +1941,53 @@ var ssrfVulnerability = {
1326
1941
  category: "Injection",
1327
1942
  description: "Fetching URLs from user input without validation allows attackers to access internal services, cloud metadata endpoints (169.254.169.254), and private networks.",
1328
1943
  check(content, filePath) {
1329
- if (isTestFile(filePath)) return [];
1330
- const isServerFile = /(?:\/api\/|routes?\/|controllers?\/|server\.|handler|middleware)/i.test(filePath);
1331
- if (!isServerFile) return [];
1944
+ if (!isServerSideFile(filePath)) return [];
1332
1945
  const matches = [];
1333
- const patterns = [
1334
- /(?:fetch|axios\.get|axios\.post|axios|got|request|http\.get|https\.get)\s*\(\s*(?:req\.(?:body|query|params))\./gi
1335
- ];
1336
1946
  const hasValidation = /allowedHosts|allowedDomains|allowedUrls|safeDomain|whitelist|urlValidator|new URL.*hostname.*includes|isAllowedUrl|validateUrl|isValidUrl/i.test(content);
1337
1947
  if (hasValidation) return [];
1338
- for (const p of patterns) {
1339
- const rawMatches = findMatches(
1340
- content,
1341
- p,
1342
- ssrfVulnerability,
1343
- filePath,
1344
- () => "Validate URLs against an allowlist before fetching. Block internal IPs: 127.0.0.1, 10.x, 172.16-31.x, 192.168.x, 169.254.169.254 (cloud metadata). Use: const url = new URL(input); if (!ALLOWED_HOSTS.includes(url.hostname)) throw new Error('Blocked');"
1345
- );
1346
- for (const rm of rawMatches) {
1347
- const lineText = content.split("\n")[rm.line - 1] || "";
1348
- const varMatch = lineText.match(/(?:fetch|axios\.\w+|got|request|https?\.get)\s*\(\s*(\w+)/);
1349
- if (varMatch) {
1350
- const varName = varMatch[1];
1351
- const constDef = new RegExp(`const\\s+${varName}\\s*=\\s*["'\`]https?://`, "i");
1352
- if (constDef.test(content)) continue;
1948
+ const inlinePattern = /(?:fetch|axios\.get|axios\.post|axios|got|request|http\.get|https\.get)\s*\(\s*(?:req\.(?:body|query|params))\./gi;
1949
+ matches.push(...findMatches(
1950
+ content,
1951
+ inlinePattern,
1952
+ ssrfVulnerability,
1953
+ filePath,
1954
+ () => "Validate URLs against an allowlist before fetching. Block internal IPs: 127.0.0.1, 10.x, 172.16-31.x, 192.168.x, 169.254.169.254 (cloud metadata). Use: const url = new URL(input); if (!ALLOWED_HOSTS.includes(url.hostname)) throw new Error('Blocked');"
1955
+ ));
1956
+ if (!/\b(?:fetch|axios|got|request|http\.get|https\.get)\b/.test(content)) return matches;
1957
+ const ctx = tryParse(content, filePath);
1958
+ if (!ctx) return matches;
1959
+ const { parsed, taint } = ctx;
1960
+ const FETCH_CALLEES = /* @__PURE__ */ new Set(["fetch", "axios", "got", "request"]);
1961
+ const FETCH_METHODS = /* @__PURE__ */ new Set(["get", "post", "put", "patch", "delete", "request"]);
1962
+ visitCalls(
1963
+ parsed,
1964
+ (callee) => {
1965
+ if (callee.type === "Identifier" && FETCH_CALLEES.has(callee.name)) return true;
1966
+ if (callee.type === "MemberExpression" && callee.property.type === "Identifier") {
1967
+ if (!FETCH_METHODS.has(callee.property.name)) return false;
1968
+ const obj = callee.object;
1969
+ if (obj.type === "Identifier") {
1970
+ return obj.name === "axios" || obj.name === "got" || obj.name === "http" || obj.name === "https";
1971
+ }
1353
1972
  }
1354
- matches.push(rm);
1973
+ return false;
1974
+ },
1975
+ (call, line) => {
1976
+ const first = call.arguments[0];
1977
+ if (!first || first.type === "SpreadElement") return;
1978
+ if (!taint.isTainted(first)) return;
1979
+ if (matches.some((m) => m.line === line)) return;
1980
+ matches.push(
1981
+ astMatch(
1982
+ content,
1983
+ filePath,
1984
+ line,
1985
+ ssrfVulnerability,
1986
+ "Validate URLs against an allowlist before fetching. Parse the URL, check the hostname against a static set, and block internal IPs (127.0.0.1, 10.x, 172.16-31.x, 192.168.x, 169.254.169.254)."
1987
+ )
1988
+ );
1355
1989
  }
1356
- }
1990
+ );
1357
1991
  return matches;
1358
1992
  }
1359
1993
  };
@@ -1364,19 +1998,15 @@ var massAssignment = {
1364
1998
  category: "Authorization",
1365
1999
  description: "Spreading or assigning request body directly into database models allows attackers to set fields they shouldn't (e.g., isAdmin, role, verified).",
1366
2000
  check(content, filePath) {
1367
- const isApiFile = /(?:\/api\/|routes?\/|controllers?\/|server\.|handler)/i.test(filePath);
1368
- if (!isApiFile) return [];
2001
+ if (!isServerSideFile(filePath)) return [];
2002
+ const hasSanitization = /pick\(|omit\(|allowedFields|sanitize|whitelist|permit|strong_params/i.test(content);
2003
+ if (hasSanitization) return [];
1369
2004
  const matches = [];
1370
2005
  const patterns = [
1371
- // Object.assign(model, req.body)
1372
2006
  /Object\.assign\s*\(\s*(?:user|account|profile|record|doc|model|entity)[^,]*,\s*(?:req\.body|body|input|data)\s*\)/gi,
1373
- // Spread req.body into create/update
1374
2007
  /(?:create|update|insert|save|findOneAndUpdate|updateOne|upsert)\s*\(\s*\{[^}]*\.\.\.(?:req\.body|body|input|data)/gi,
1375
- // Direct req.body into DB
1376
2008
  /(?:create|insert|save)\s*\(\s*(?:req\.body|body)\s*\)/gi
1377
2009
  ];
1378
- const hasSanitization = /pick\(|omit\(|allowedFields|sanitize|whitelist|permit|strong_params/i.test(content);
1379
- if (hasSanitization) return [];
1380
2010
  for (const p of patterns) {
1381
2011
  matches.push(...findMatches(
1382
2012
  content,
@@ -1386,6 +2016,61 @@ var massAssignment = {
1386
2016
  () => "Never pass req.body directly to database operations. Explicitly pick allowed fields: const { name, email } = req.body; await db.create({ name, email });"
1387
2017
  ));
1388
2018
  }
2019
+ const ORM_METHOD_PREFIXES = [
2020
+ "create",
2021
+ "insert",
2022
+ "save",
2023
+ "update",
2024
+ "upsert",
2025
+ "patch",
2026
+ "bulkCreate",
2027
+ "bulkInsert",
2028
+ "bulkUpsert",
2029
+ "findOneAndUpdate",
2030
+ "findByIdAndUpdate",
2031
+ "findAndUpdate",
2032
+ "build",
2033
+ "merge",
2034
+ "replace"
2035
+ ];
2036
+ const isOrmMethod = (name) => ORM_METHOD_PREFIXES.some((p) => name === p || name.startsWith(p));
2037
+ if (!/\b(?:create|insert|save|update|upsert|patch|bulk|findOneAndUpdate|findByIdAndUpdate|findAndUpdate|build|merge|replace)\w*\s*\(/.test(content)) {
2038
+ return matches;
2039
+ }
2040
+ const ctx = tryParse(content, filePath);
2041
+ if (!ctx) return matches;
2042
+ const { parsed, taint } = ctx;
2043
+ visitCalls(
2044
+ parsed,
2045
+ (callee) => {
2046
+ if (callee.type === "MemberExpression" && callee.property.type === "Identifier") {
2047
+ return isOrmMethod(callee.property.name);
2048
+ }
2049
+ return false;
2050
+ },
2051
+ (call, line) => {
2052
+ const tainted = call.arguments.some((arg) => {
2053
+ if (arg.type === "SpreadElement") return taint.isTainted(arg.argument);
2054
+ if (arg.type === "ObjectExpression") {
2055
+ return arg.properties.some(
2056
+ (p) => p.type === "SpreadElement" && taint.isTainted(p.argument)
2057
+ );
2058
+ }
2059
+ return taint.isTainted(arg);
2060
+ });
2061
+ if (!tainted) return;
2062
+ if (matches.some((m) => m.line === line)) return;
2063
+ matches.push(
2064
+ astMatch(
2065
+ content,
2066
+ filePath,
2067
+ line,
2068
+ massAssignment,
2069
+ "Pick allowed fields explicitly instead of spreading the request body. `User.create({ email: req.body.email, name: req.body.name })` rather than `User.create({ ...req.body })`."
2070
+ )
2071
+ );
2072
+ }
2073
+ );
1389
2074
  return matches;
1390
2075
  }
1391
2076
  };
@@ -1398,12 +2083,12 @@ var timingAttack = {
1398
2083
  check(content, filePath) {
1399
2084
  if (isTestFile(filePath)) return [];
1400
2085
  const matches = [];
2086
+ const hasTimingSafe = /timingSafeEqual|constantTimeEqual|safeCompare|secureCompare/i.test(content);
2087
+ if (hasTimingSafe) return [];
1401
2088
  const patterns = [
1402
2089
  /(?:token|secret|hash|digest|signature|hmac|apiKey|api_key)\s*(?:===|!==)\s*(?:req\.|body\.|params\.|query\.|input)/gi,
1403
2090
  /(?:^|[^.\w])(?:req\.|body\.|params\.|query\.|input)[\w.]*(?:token|secret|hash|digest|signature|hmac)\s*(?:===|!==)/gim
1404
2091
  ];
1405
- const hasTimingSafe = /timingSafeEqual|constantTimeEqual|safeCompare|secureCompare/i.test(content);
1406
- if (hasTimingSafe) return [];
1407
2092
  for (const p of patterns) {
1408
2093
  const raw = findMatches(
1409
2094
  content,
@@ -1418,6 +2103,43 @@ var timingAttack = {
1418
2103
  matches.push(m);
1419
2104
  }
1420
2105
  }
2106
+ if (!/===|!==/.test(content)) return matches;
2107
+ const ctx = tryParse(content, filePath);
2108
+ if (!ctx) return matches;
2109
+ const SECRET_NAME_RE = /(?:secret|token|api[_-]?key|auth[_-]?key|jwt[_-]?secret|signature|hmac|password|passwd|pwd_hash|pwd_digest|digest)/i;
2110
+ function looksLikeSecret(node) {
2111
+ if (node.type === "Identifier") return SECRET_NAME_RE.test(node.name);
2112
+ if (node.type === "MemberExpression") {
2113
+ if (node.property.type === "Identifier" && SECRET_NAME_RE.test(node.property.name)) return true;
2114
+ if (node.property.type === "StringLiteral" && SECRET_NAME_RE.test(node.property.value)) return true;
2115
+ return looksLikeSecret(node.object);
2116
+ }
2117
+ return false;
2118
+ }
2119
+ visitBinary(ctx.parsed, (n, line) => {
2120
+ if (n.operator !== "===" && n.operator !== "!==" && n.operator !== "==" && n.operator !== "!=") {
2121
+ return;
2122
+ }
2123
+ if (n.left.type === "UnaryExpression" && n.left.operator === "typeof") return;
2124
+ if (n.right.type === "UnaryExpression" && n.right.operator === "typeof") return;
2125
+ const leftSecret = looksLikeSecret(n.left);
2126
+ const rightSecret = looksLikeSecret(n.right);
2127
+ if (!leftSecret && !rightSecret) return;
2128
+ const otherSide = leftSecret ? n.right : n.left;
2129
+ if (otherSide.type === "StringLiteral" || otherSide.type === "NumericLiteral" || otherSide.type === "NullLiteral" || otherSide.type === "BooleanLiteral") {
2130
+ return;
2131
+ }
2132
+ if (matches.some((m) => m.line === line)) return;
2133
+ matches.push(
2134
+ astMatch(
2135
+ content,
2136
+ filePath,
2137
+ line,
2138
+ timingAttack,
2139
+ "Compare secrets with crypto.timingSafeEqual() after a length check. === short-circuits on the first differing byte and leaks information via timing."
2140
+ )
2141
+ );
2142
+ });
1421
2143
  return matches;
1422
2144
  }
1423
2145
  };
@@ -1428,16 +2150,14 @@ var logInjection = {
1428
2150
  category: "Injection",
1429
2151
  description: "Logging unsanitized user input allows attackers to forge log entries, inject malicious content, or exploit log aggregation systems via newlines and special characters.",
1430
2152
  check(content, filePath) {
1431
- if (filePath.includes("test") || filePath.includes("mock")) return [];
1432
- const isServerFile = /(?:\/api\/|routes?\/|controllers?\/|server\.|middleware|handler)/i.test(filePath);
1433
- if (!isServerFile) return [];
2153
+ if (!isServerSideFile(filePath)) return [];
2154
+ const hasSanitization = /replace\s*\(\s*\/\[?\\r\\n\]|sanitizeLog|stripNewlines|sanitizeForLog/i.test(content);
2155
+ if (hasSanitization) return [];
1434
2156
  const matches = [];
1435
2157
  const patterns = [
1436
2158
  /console\.(?:log|warn|error|info)\s*\([^)]*(?:req\.body|req\.query|req\.params|req\.headers)\s*\)/gi,
1437
2159
  /(?:logger|log)\.(?:info|warn|error|debug)\s*\([^)]*(?:req\.body|req\.query|req\.params)\s*\)/gi
1438
2160
  ];
1439
- const hasSanitization = /sanitize|escape|JSON\.stringify|replace.*\\n/i.test(content);
1440
- if (hasSanitization) return [];
1441
2161
  for (const p of patterns) {
1442
2162
  matches.push(...findMatches(
1443
2163
  content,
@@ -1447,6 +2167,41 @@ var logInjection = {
1447
2167
  () => "Sanitize user input before logging: strip newlines and control characters. Use JSON.stringify() or a structured logger (e.g., pino, winston) that escapes values automatically."
1448
2168
  ));
1449
2169
  }
2170
+ if (!/(?:console\.|logger\.|log\.)\s*\w+\s*\(/.test(content)) return matches;
2171
+ const ctx = tryParse(content, filePath);
2172
+ if (!ctx) return matches;
2173
+ const { parsed, taint } = ctx;
2174
+ const LOG_METHODS = /* @__PURE__ */ new Set(["log", "warn", "error", "info", "debug", "trace"]);
2175
+ visitCalls(
2176
+ parsed,
2177
+ (callee) => {
2178
+ if (callee.type !== "MemberExpression") return false;
2179
+ if (callee.property.type !== "Identifier") return false;
2180
+ if (!LOG_METHODS.has(callee.property.name)) return false;
2181
+ const obj = callee.object;
2182
+ if (obj.type === "Identifier") {
2183
+ return obj.name === "console" || obj.name === "logger" || obj.name === "log";
2184
+ }
2185
+ return false;
2186
+ },
2187
+ (call, line) => {
2188
+ const tainted = call.arguments.some((arg) => {
2189
+ if (arg.type === "SpreadElement") return taint.isTainted(arg.argument);
2190
+ return taint.isTainted(arg);
2191
+ });
2192
+ if (!tainted) return;
2193
+ if (matches.some((m) => m.line === line)) return;
2194
+ matches.push(
2195
+ astMatch(
2196
+ content,
2197
+ filePath,
2198
+ line,
2199
+ logInjection,
2200
+ "Strip newlines/control chars before embedding user input in a log line. `value.replace(/[\\r\\n]/g, ' ')` for quick fix; a structured logger escapes values automatically."
2201
+ )
2202
+ );
2203
+ }
2204
+ );
1450
2205
  return matches;
1451
2206
  }
1452
2207
  };
@@ -1459,7 +2214,33 @@ var weakPasswordRequirements = {
1459
2214
  check(content, filePath) {
1460
2215
  if (isTestFile(filePath)) return [];
1461
2216
  if (!/(?:password|passwd|pwd)/i.test(content)) return [];
1462
- if (!/(?:register|signup|sign.up|createUser|create.user|changePassword|resetPassword|set.password)/i.test(content) && !/(?:\/api\/|routes?\/|controllers?\/)/i.test(filePath)) return [];
2217
+ const isPasswordContext = /(?:register|signup|sign.up|createUser|create.user|changePassword|resetPassword|set.password|validatePassword|validate.password|passwordPolicy|password.policy)/i.test(
2218
+ content
2219
+ ) || isServerSideFile(filePath);
2220
+ const matches = [];
2221
+ if (isPasswordContext) {
2222
+ const weakThresholdPatterns = [
2223
+ // password.length < 4, password.length < 6, etc.
2224
+ /(?:password|pwd|passwd)\s*\.length\s*<\s*[1-7]\b/gi,
2225
+ /(?:password|pwd|passwd)\s*\.length\s*<=\s*[0-6]\b/gi,
2226
+ // password.length >= 4, password.length >= 6 (min length set too low)
2227
+ /(?:password|pwd|passwd)\s*\.length\s*>=\s*[1-7]\b/gi,
2228
+ /(?:password|pwd|passwd)\s*\.length\s*>\s*[0-6]\b/gi,
2229
+ // Python: len(password) < 8 with a low threshold
2230
+ /len\s*\(\s*(?:password|pwd|passwd)\s*\)\s*<\s*[1-7]\b/gi
2231
+ ];
2232
+ for (const p of weakThresholdPatterns) {
2233
+ matches.push(...findMatches(
2234
+ content,
2235
+ p,
2236
+ weakPasswordRequirements,
2237
+ filePath,
2238
+ () => "Minimum password length is too low. Require at least 8 characters with complexity (upper+lower+digit+symbol) or 12+ characters without complexity. OWASP ASVS L1 requires 8+; NIST 800-63B recommends 12+."
2239
+ ));
2240
+ }
2241
+ if (matches.length > 0) return matches;
2242
+ }
2243
+ if (!isPasswordContext) return [];
1463
2244
  const hasValidation = /(?:password|pwd).*(?:\.length|minLength|minlength|min_length)\s*(?:>=?|<|>)\s*\d|(?:password|pwd).*(?:match|test|regex|pattern)|zxcvbn|password-validator|passwordStrength|isStrongPassword|joi\.|yup\.|zod\.|validate|schema/i.test(content);
1464
2245
  if (hasValidation) return [];
1465
2246
  const hasPasswordHandling = /(?:password|pwd)\s*[:=]\s*(?:req\.body|body|input|params|args)\./i.test(content);
@@ -1492,7 +2273,8 @@ var sessionFixation = {
1492
2273
  if (isTestFile(filePath)) return [];
1493
2274
  if (!/(?:login|signin|sign.in|authenticate)/i.test(content)) return [];
1494
2275
  if (!/session/i.test(content)) return [];
1495
- const hasRegenerate = /regenerate|destroy.*create|req\.session\.id\s*=|session\.regenerateId|rotateSession|clearCookies/i.test(content);
2276
+ const codeOnly = content.replace(/\/\*[\s\S]*?\*\//g, "").replace(/(^|[^:])\/\/.*$/gm, "$1");
2277
+ const hasRegenerate = /regenerate|destroy.*create|req\.session\.id\s*=|session\.regenerateId|rotateSession|clearCookies/i.test(codeOnly);
1496
2278
  if (hasRegenerate) return [];
1497
2279
  const hasLogin = /(?:function\s+(?:login|signin|authenticate)|(?:login|signin|authenticate)\s*(?:=\s*(?:async\s*)?\(|:\s*(?:async\s*)?\())/i.test(content);
1498
2280
  if (!hasLogin) return [];
@@ -1515,7 +2297,8 @@ var missingBruteForce = {
1515
2297
  const isLoginFile = /(?:login|signin|sign.in|auth)/i.test(filePath) || /(?:login|signin|authenticate).*(?:post|handler|route)/i.test(content);
1516
2298
  if (!isLoginFile) return [];
1517
2299
  if (!/(?:password|credential)/i.test(content)) return [];
1518
- const hasBruteForce = /rate.?limit|throttle|lockout|maxAttempts|max_attempts|failedAttempts|loginAttempts|brute|express-brute|express-rate-limit|slowDown/i.test(content);
2300
+ const codeOnly = content.replace(/\/\*[\s\S]*?\*\//g, "").replace(/(^|[^:])\/\/.*$/gm, "$1").replace(/^\s*#.*$/gm, "");
2301
+ const hasBruteForce = /rate.?limit|throttle|lockout|maxAttempts|max_attempts|failedAttempts|loginAttempts|express-brute|express-rate-limit|slowDown/i.test(codeOnly);
1519
2302
  if (hasBruteForce) return [];
1520
2303
  return findMatches(
1521
2304
  content,
@@ -1542,7 +2325,10 @@ var nosqlInjection = {
1542
2325
  // $where with user input
1543
2326
  /\$where\s*:\s*(?!["'`])/g,
1544
2327
  // Direct variable in query without sanitization
1545
- /\.(?:findOne|findById|deleteOne|updateOne|findOneAndUpdate)\s*\(\s*\{[^}]*:\s*(?:req\.(?:body|query|params))\./gi
2328
+ /\.(?:findOne|findById|deleteOne|updateOne|findOneAndUpdate)\s*\(\s*\{[^}]*:\s*(?:req\.(?:body|query|params))\./gi,
2329
+ // findOneAndUpdate / updateOne / deleteOne / find with req.body as
2330
+ // the entire filter (attacker controls the filter shape).
2331
+ /\.(?:findOne|findById|findOneAndUpdate|updateOne|deleteOne|deleteMany|updateMany|replaceOne|find)\s*\(\s*req\.body\s*[,)]/gi
1546
2332
  ];
1547
2333
  const hasSanitization = /sanitize|escape|mongo-sanitize|express-mongo-sanitize|validator|typeof.*===.*string/i.test(content);
1548
2334
  if (hasSanitization) return [];
@@ -1621,7 +2407,7 @@ var graphqlIntrospection = {
1621
2407
  category: "Information Leakage",
1622
2408
  description: "GraphQL introspection exposes your entire API schema, types, queries, and mutations to attackers, making it easy to find attack vectors.",
1623
2409
  check(content, filePath) {
1624
- if (!/graphql/i.test(content) && !/graphql/i.test(filePath)) return [];
2410
+ if (!/graphql|apollo|ApolloServer|GraphQLServer|createYoga|buildSchema|makeExecutableSchema/i.test(content) && !/graphql|apollo/i.test(filePath)) return [];
1625
2411
  const matches = [];
1626
2412
  if (/introspection\s*:\s*true/i.test(content)) {
1627
2413
  matches.push(...findMatches(
@@ -1760,6 +2546,15 @@ var exposedSourceMaps = {
1760
2546
  () => "Set productionSourceMap: false to avoid exposing source code in production."
1761
2547
  ));
1762
2548
  }
2549
+ if (/productionBrowserSourceMaps\s*:\s*true/i.test(content)) {
2550
+ matches.push(...findMatches(
2551
+ content,
2552
+ /productionBrowserSourceMaps\s*:\s*true/gi,
2553
+ exposedSourceMaps,
2554
+ filePath,
2555
+ () => "Set productionBrowserSourceMaps: false in next.config.js. If you need source maps for error tracking, upload them to your error tracker instead (e.g. Sentry upload-sourcemaps) rather than serving them publicly."
2556
+ ));
2557
+ }
1763
2558
  return matches;
1764
2559
  }
1765
2560
  };
@@ -1885,14 +2680,14 @@ var weakHashing = {
1885
2680
  if (filePath.includes("test") || filePath.includes("mock")) return [];
1886
2681
  if (/bcrypt|scrypt|argon2/i.test(content)) return [];
1887
2682
  const matches = [];
1888
- const patterns = [
2683
+ const inlinePatterns = [
1889
2684
  /(?:md5|sha1|sha256|sha512)\s*\([^)]*(?:password|passwd|pwd)/gi,
1890
2685
  /createHash\s*\(\s*["'`](?:md5|sha1|sha256)["'`]\).*(?:password|passwd|pwd)/gi,
1891
2686
  /(?:password|passwd|pwd).*createHash\s*\(\s*["'`](?:md5|sha1|sha256)["'`]\)/gi,
1892
2687
  /hashlib\.(?:md5|sha1|sha256)\s*\([^)]*(?:password|passwd|pwd)/gi,
1893
2688
  /Digest::(?:MD5|SHA1|SHA256).*(?:password|passwd|pwd)/gi
1894
2689
  ];
1895
- for (const p of patterns) {
2690
+ for (const p of inlinePatterns) {
1896
2691
  matches.push(...findMatches(
1897
2692
  content,
1898
2693
  p,
@@ -1901,6 +2696,27 @@ var weakHashing = {
1901
2696
  () => "Use bcrypt, scrypt, or argon2 for password hashing \u2014 they're intentionally slow. Example: const hash = await bcrypt.hash(password, 12);"
1902
2697
  ));
1903
2698
  }
2699
+ const hasPasswordContext = /\b(?:hashPassword|hash_password|verify_password|verifyPassword|password_hash|password_hash_verify|password_hashing)\b/i.test(content) || /\b(?:function|def|async)\s+\w*(?:password|pwd)\w*/i.test(content) || /\bpassword\s*[:=]/i.test(content);
2700
+ if (hasPasswordContext) {
2701
+ const weakCallPatterns = [
2702
+ /createHash\s*\(\s*["'`](?:md5|sha1|sha256)["'`]\s*\)/gi,
2703
+ /hashlib\.(?:md5|sha1|sha256)\s*\(/gi,
2704
+ /Digest::(?:MD5|SHA1|SHA256)\./gi
2705
+ ];
2706
+ for (const p of weakCallPatterns) {
2707
+ const raw = findMatches(
2708
+ content,
2709
+ p,
2710
+ weakHashing,
2711
+ filePath,
2712
+ () => "Use bcrypt, scrypt, or argon2 for password hashing. These algorithms are intentionally slow so brute-force attacks are infeasible."
2713
+ );
2714
+ for (const m of raw) {
2715
+ if (matches.some((existing) => existing.line === m.line)) continue;
2716
+ matches.push(m);
2717
+ }
2718
+ }
2719
+ }
1904
2720
  return matches;
1905
2721
  }
1906
2722
  };
@@ -1983,7 +2799,8 @@ var dangerousInnerHTML = {
1983
2799
  if (!filePath.match(/\.(jsx|tsx)$/)) return [];
1984
2800
  if (isTestFile(filePath)) return [];
1985
2801
  if (!/dangerouslySetInnerHTML/i.test(content)) return [];
1986
- const hasSanitize = /DOMPurify|sanitize|purify|xss|sanitizeHtml|isomorphic-dompurify/i.test(content);
2802
+ const codeOnly = content.replace(/\/\*[\s\S]*?\*\//g, "").replace(/(^|[^:])\/\/.*$/gm, "$1").replace(/\{\s*\/\*[\s\S]*?\*\/\s*\}/g, "");
2803
+ const hasSanitize = /\b(?:DOMPurify|sanitizeHtml|sanitize-html|isomorphic-dompurify)\b|\b(?:sanitize|purify|xss)\s*\(/i.test(codeOnly);
1987
2804
  if (hasSanitize) return [];
1988
2805
  const findings = [];
1989
2806
  const re = /dangerouslySetInnerHTML\s*=\s*\{\s*\{\s*__html\s*:\s*([^}]+)\}/g;
@@ -2271,7 +3088,8 @@ var missingCSRF = {
2271
3088
  () => "Remove @csrf_exempt and use proper CSRF tokens. For APIs, use token-based auth (JWT) instead of session cookies."
2272
3089
  ));
2273
3090
  }
2274
- if (/MIDDLEWARE.*=.*\[/s.test(content) && !/CsrfViewMiddleware/i.test(content) && /django/i.test(content)) {
3091
+ const pythonCodeOnly = content.replace(/^\s*#.*$/gm, "");
3092
+ if (/MIDDLEWARE.*=.*\[/s.test(pythonCodeOnly) && !/CsrfViewMiddleware/i.test(pythonCodeOnly) && /django/i.test(content)) {
2275
3093
  matches.push(...findMatches(
2276
3094
  content,
2277
3095
  /MIDDLEWARE\s*=/g,
@@ -2290,20 +3108,47 @@ var githubActionsInjection = {
2290
3108
  category: "Injection",
2291
3109
  description: "Using ${{ github.event.* }} directly in 'run:' steps allows attackers to inject shell commands via PR titles, issue bodies, or branch names.",
2292
3110
  check(content, filePath) {
2293
- if (!filePath.match(/\.github\/workflows\/.*\.(yml|yaml)$/i)) return [];
3111
+ const isWorkflowPath = /\.github\/workflows\/.*\.(ya?ml)$/i.test(filePath);
3112
+ const looksLikeWorkflow = /\.(ya?ml)$/i.test(filePath) && /^\s*on\s*:/m.test(content) && /^\s*jobs\s*:/m.test(content);
3113
+ if (!isWorkflowPath && !looksLikeWorkflow) return [];
2294
3114
  const matches = [];
2295
3115
  const patterns = [
2296
3116
  /run:.*\$\{\{\s*github\.event\.(?:issue|pull_request|comment|review|head_commit)\.(?:title|body|message)/gi,
2297
- /run:.*\$\{\{\s*github\.event\.(?:inputs|head_ref|base_ref)/gi
3117
+ /run:.*\$\{\{\s*github\.event\.(?:inputs|head_ref|base_ref)/gi,
3118
+ // Literal-block `run: |` with user-controllable interpolation on the
3119
+ // SAME line or a following indented line. Anchored to `run:` (either
3120
+ // on the same line or within the prior few lines before the
3121
+ // interpolation) so `env: TITLE: ${{ github.event.issue.title }}` —
3122
+ // the recommended-fix shape — doesn't false-positive.
3123
+ /(?:^\s*(?:-\s+)?run:\s*\|?\s*\n(?:(?!^\s*(?:[-]\s*)?(?:env|with|id|name|if|timeout-minutes|continue-on-error|shell|working-directory|uses):).+\n){0,20}\s*.*)?\$\{\{\s*github\.event\.(?:issue|pull_request|comment|review|head_commit)\.(?:title|body|message|name)/gmi
2298
3124
  ];
3125
+ const lines = content.split("\n");
3126
+ const isEnvMappingLine = (lineNum) => {
3127
+ const lineText = lines[lineNum - 1] ?? "";
3128
+ if (/^\s*env\s*:/.test(lineText)) return true;
3129
+ const indent = lineText.match(/^(\s*)/)?.[1]?.length ?? 0;
3130
+ if (indent === 0) return false;
3131
+ for (let i = lineNum - 2; i >= 0; i--) {
3132
+ const prev = lines[i] ?? "";
3133
+ if (!prev.trim()) continue;
3134
+ const prevIndent = prev.match(/^(\s*)/)?.[1]?.length ?? 0;
3135
+ if (prevIndent < indent) {
3136
+ return /^\s*env\s*:/.test(prev);
3137
+ }
3138
+ }
3139
+ return false;
3140
+ };
2299
3141
  for (const p of patterns) {
2300
- matches.push(...findMatches(
3142
+ for (const m of findMatches(
2301
3143
  content,
2302
3144
  p,
2303
3145
  githubActionsInjection,
2304
3146
  filePath,
2305
3147
  () => "Never use ${{ github.event.* }} directly in 'run:'. Pass it as an environment variable: env: TITLE: ${{ github.event.issue.title }} then use $TITLE in the script."
2306
- ));
3148
+ )) {
3149
+ if (isEnvMappingLine(m.line)) continue;
3150
+ matches.push(m);
3151
+ }
2307
3152
  }
2308
3153
  return matches;
2309
3154
  }
@@ -2351,6 +3196,15 @@ var corsServerless = {
2351
3196
  () => "Replace wildcard CORS with specific origins: allowOrigin: ['https://yourdomain.com']. Wildcard allows any site to call your API."
2352
3197
  ));
2353
3198
  }
3199
+ if (/^\s*origin\s*:\s*['"]\*['"]/m.test(content)) {
3200
+ matches.push(...findMatches(
3201
+ content,
3202
+ /^\s*origin\s*:\s*['"]\*['"]/gim,
3203
+ corsServerless,
3204
+ filePath,
3205
+ () => "Replace the wildcard origin with a concrete allowlist: `origin: https://yourdomain.com` (or an array). Combined with `allowCredentials: true`, wildcard CORS is rejected by the browser; combined with auth headers, it's a data-exfiltration surface."
3206
+ ));
3207
+ }
2354
3208
  return matches;
2355
3209
  }
2356
3210
  };
@@ -2512,27 +3366,55 @@ var xxeVulnerability = {
2512
3366
  category: "Injection",
2513
3367
  description: "XML parsers that process external entities allow attackers to read files, perform SSRF, or cause DoS via billion-laughs attacks.",
2514
3368
  check(content, filePath) {
2515
- if (!/xml|parseXML|DOMParser|SAXParser|etree|lxml/i.test(content)) return [];
3369
+ if (!/xml|parseXml|parseXML|DOMParser|SAXParser|etree|lxml|libxml/i.test(content)) return [];
2516
3370
  const matches = [];
2517
3371
  const patterns = [
2518
- /\.parseXML\s*\(/g,
3372
+ /\.parseXm?l\s*\(/gi,
3373
+ // catches parseXml (libxmljs) AND parseXML
2519
3374
  /new\s+DOMParser\s*\(\)/g,
2520
3375
  /etree\.parse\s*\(/g,
2521
3376
  /lxml\.etree/g,
2522
3377
  /SAXParserFactory/g,
2523
3378
  /XMLReaderFactory/g
2524
3379
  ];
2525
- const hasProtection = /noent.*false|resolveExternals.*false|FEATURE_EXTERNAL.*false|defusedxml|disallow-doctype-decl/i.test(content);
2526
- if (hasProtection) return [];
2527
- for (const p of patterns) {
2528
- matches.push(...findMatches(
2529
- content,
2530
- p,
2531
- xxeVulnerability,
2532
- filePath,
2533
- () => "Disable external entities: set noent: false, or use defusedxml (Python). For Java: factory.setFeature('http://apache.org/xml/features/disallow-doctype-decl', true)."
2534
- ));
3380
+ const hasProtection = /noent\s*:\s*false|resolveExternals\s*:\s*false|FEATURE_EXTERNAL.*false|defusedxml|disallow-doctype-decl|nonet\s*:\s*true/i.test(content);
3381
+ if (!hasProtection) {
3382
+ for (const p of patterns) {
3383
+ matches.push(...findMatches(
3384
+ content,
3385
+ p,
3386
+ xxeVulnerability,
3387
+ filePath,
3388
+ () => "Disable external entities: set noent: false + dtdload: false + nonet: true (libxmljs), or use defusedxml (Python), or factory.setFeature('http://apache.org/xml/features/disallow-doctype-decl', true) (Java)."
3389
+ ));
3390
+ }
2535
3391
  }
3392
+ if (!/parseXml\s*\(/.test(content)) return matches;
3393
+ const ctx = tryParse(content, filePath);
3394
+ if (!ctx) return matches;
3395
+ visitCalls(
3396
+ ctx.parsed,
3397
+ (callee) => isCalleeNamed(callee, "parseXml") || isCalleeNamed(callee, "parseXML"),
3398
+ (call, line) => {
3399
+ const opts = call.arguments[1];
3400
+ if (!opts || opts.type !== "ObjectExpression") return;
3401
+ const noent = getObjectProperty(opts, "noent");
3402
+ const dtdload = getObjectProperty(opts, "dtdload");
3403
+ const external = getObjectProperty(opts, "resolveExternals");
3404
+ const dangerous = noent?.value.type === "BooleanLiteral" && noent.value.value === true || dtdload?.value.type === "BooleanLiteral" && dtdload.value.value === true || external?.value.type === "BooleanLiteral" && external.value.value === true;
3405
+ if (!dangerous) return;
3406
+ if (matches.some((m) => m.line === line)) return;
3407
+ matches.push(
3408
+ astMatch(
3409
+ content,
3410
+ filePath,
3411
+ line,
3412
+ xxeVulnerability,
3413
+ "Set noent: false, dtdload: false, and nonet: true on the parser options to disable external-entity resolution."
3414
+ )
3415
+ );
3416
+ }
3417
+ );
2536
3418
  return matches;
2537
3419
  }
2538
3420
  };
@@ -2561,6 +3443,46 @@ var ssti = {
2561
3443
  () => "Never render templates from user input. Use pre-defined templates and pass data as context variables: render_template('template.html', data=user_data)."
2562
3444
  ));
2563
3445
  }
3446
+ if (!/(?:\.compile|\.render|renderString|render_template_string)\s*\(/.test(content)) {
3447
+ return matches;
3448
+ }
3449
+ const ctx = tryParse(content, filePath);
3450
+ if (!ctx) return matches;
3451
+ const { parsed, taint } = ctx;
3452
+ const SSTI_METHODS = /* @__PURE__ */ new Set([
3453
+ "compile",
3454
+ // Handlebars.compile, pug.compile, _.template (returns a function)
3455
+ "render",
3456
+ // ejs.render, engine.render, mustache.render
3457
+ "renderString",
3458
+ // nunjucks.renderString
3459
+ "render_template_string"
3460
+ ]);
3461
+ visitCalls(
3462
+ parsed,
3463
+ (callee) => {
3464
+ if (callee.type === "Identifier" && SSTI_METHODS.has(callee.name)) return true;
3465
+ if (callee.type === "MemberExpression" && callee.property.type === "Identifier") {
3466
+ return SSTI_METHODS.has(callee.property.name);
3467
+ }
3468
+ return false;
3469
+ },
3470
+ (call, line) => {
3471
+ const first = call.arguments[0];
3472
+ if (!first || first.type === "SpreadElement") return;
3473
+ if (!taint.isTainted(first)) return;
3474
+ if (matches.some((m) => m.line === line)) return;
3475
+ matches.push(
3476
+ astMatch(
3477
+ content,
3478
+ filePath,
3479
+ line,
3480
+ ssti,
3481
+ "Compile templates from a trusted, static source (a file path or a constant string). Pass user data only as context values."
3482
+ )
3483
+ );
3484
+ }
3485
+ );
2564
3486
  return matches;
2565
3487
  }
2566
3488
  };
@@ -2630,7 +3552,7 @@ var exposedAdminRoutes = {
2630
3552
  category: "Information Leakage",
2631
3553
  description: "Routes like /admin, /debug, /phpinfo, or /actuator without authentication expose sensitive controls and information to attackers.",
2632
3554
  check(content, filePath) {
2633
- if (!/(?:\/api\/|routes?\/|server\.|app\.|index\.[jt]s)/i.test(filePath)) return [];
3555
+ if (!isServerSideFile(filePath)) return [];
2634
3556
  const matches = [];
2635
3557
  const patterns = [
2636
3558
  /[.'"]\s*(?:get|use|all)\s*\(\s*["'`]\/(?:admin|debug|_debug|__debug__|phpinfo|actuator|graphiql|playground|swagger|reset|seed|test|dev|mock)["'`]/gi
@@ -2697,9 +3619,10 @@ var sensitiveURLParams = {
2697
3619
  if (isTestFile(filePath)) return [];
2698
3620
  const matches = [];
2699
3621
  const patterns = [
2700
- // Actual code building URLs with sensitive params (template literals or concat)
2701
- /[&?](?:password|secret|api_key|apiKey|access_token|ssn|credit_card)\s*=\s*\$\{/gi,
2702
- /[&?](?:password|secret|api_key|apiKey|access_token)\s*=["']\s*\+/gi
3622
+ // Template literals embedding sensitive values in URL query strings
3623
+ /[?&](?:password|passwd|pwd|secret|api[_-]?key|access[_-]?token|refresh[_-]?token|auth[_-]?token|session(?:[_-]?id)?|token|jwt|ssn|credit[_-]?card)\s*=\s*\$\{/gi,
3624
+ // String concat building the same
3625
+ /[?&](?:password|passwd|pwd|secret|api[_-]?key|access[_-]?token|refresh[_-]?token|auth[_-]?token|session(?:[_-]?id)?|token|jwt|ssn|credit[_-]?card)\s*=["']\s*\+/gi
2703
3626
  ];
2704
3627
  for (const p of patterns) {
2705
3628
  matches.push(...findMatches(
@@ -2721,7 +3644,7 @@ var missingContentDisposition = {
2721
3644
  description: "File download endpoints without Content-Disposition headers may render files inline, leading to XSS if the file contains HTML/JS.",
2722
3645
  check(content, filePath) {
2723
3646
  if (!/(?:download|sendFile|send_file|pipe|createReadStream)/i.test(content)) return [];
2724
- if (!/(?:\/api\/|routes?\/|controllers?\/|server\.|handler)/i.test(filePath)) return [];
3647
+ if (!isServerSideFile(filePath)) return [];
2725
3648
  if (/Content-Disposition|attachment|download/i.test(content)) return [];
2726
3649
  return findMatches(
2727
3650
  content,
@@ -2763,9 +3686,13 @@ var raceCondition = {
2763
3686
  if (filePath.includes("test") || filePath.includes("mock")) return [];
2764
3687
  const matches = [];
2765
3688
  const patterns = [
2766
- /(?:existsSync|exists)\s*\([^)]+\)[\s\S]{0,50}(?:writeFileSync|writeFile|unlinkSync|unlink|renameSync)\s*\(/g,
2767
- /os\.path\.exists\s*\([^)]+\)[\s\S]{0,50}open\s*\(/g,
2768
- /File\.exists\?\s*\([^)]+\)[\s\S]{0,50}File\.(?:write|delete)/g
3689
+ // Check-then-act with writes / deletes / renames
3690
+ /(?:existsSync|exists)\s*\([^)]+\)[\s\S]{0,80}(?:writeFileSync|writeFile|unlinkSync|unlink|renameSync|rename)\s*\(/g,
3691
+ // Check-then-read — also vulnerable: an attacker can swap the symlink
3692
+ // between the exists/stat call and the read.
3693
+ /(?:existsSync|statSync)\s*\([^)]+\)[\s\S]{0,80}(?:readFileSync|readFile|createReadStream)\s*\(/g,
3694
+ /os\.path\.exists\s*\([^)]+\)[\s\S]{0,80}open\s*\(/g,
3695
+ /File\.exists\?\s*\([^)]+\)[\s\S]{0,80}File\.(?:write|delete|read)/g
2769
3696
  ];
2770
3697
  for (const p of patterns) {
2771
3698
  matches.push(...findMatches(
@@ -2814,7 +3741,7 @@ var unprotectedDownload = {
2814
3741
  description: "File download endpoints that accept user-controlled filenames without path validation allow directory traversal to read arbitrary files.",
2815
3742
  check(content, filePath) {
2816
3743
  if (!/(?:download|sendFile|send_file)/i.test(content)) return [];
2817
- if (!/(?:\/api\/|routes?\/|controllers?\/|server\.|handler)/i.test(filePath)) return [];
3744
+ if (!isServerSideFile(filePath)) return [];
2818
3745
  const matches = [];
2819
3746
  if (/(?:sendFile|download|send_file)\s*\([^)]*(?:req\.|params\.|query\.|body\.)/i.test(content)) {
2820
3747
  const hasValidation = /path\.resolve|path\.normalize|path\.join.*__dirname|realpath|includes\s*\(\s*["']\.\./i.test(content);
@@ -3076,7 +4003,111 @@ var complianceMap = {
3076
4003
  VC155: { owasp: "A04:2021", cwe: "CWE-770" },
3077
4004
  VC156: { owasp: "A04:2021", cwe: "CWE-770" },
3078
4005
  VC157: { owasp: "A05:2021", cwe: "CWE-16" },
3079
- VC158: { owasp: "A01:2021", cwe: "CWE-639" }
4006
+ VC158: { owasp: "A01:2021", cwe: "CWE-639" },
4007
+ // VC159–VC183: Additional service-specific API key detection.
4008
+ // All map to A07:2021 (Identification & Auth Failures) / CWE-798 (Hardcoded
4009
+ // Credentials), matching the existing VC132–VC145 cluster.
4010
+ VC159: { owasp: "A07:2021", cwe: "CWE-798" },
4011
+ // Cohere
4012
+ VC160: { owasp: "A07:2021", cwe: "CWE-798" },
4013
+ // Replicate
4014
+ VC161: { owasp: "A07:2021", cwe: "CWE-798" },
4015
+ // Mistral
4016
+ VC162: { owasp: "A07:2021", cwe: "CWE-798" },
4017
+ // Together AI
4018
+ VC163: { owasp: "A07:2021", cwe: "CWE-798" },
4019
+ // Groq
4020
+ VC164: { owasp: "A07:2021", cwe: "CWE-798" },
4021
+ // Fireworks AI
4022
+ VC165: { owasp: "A07:2021", cwe: "CWE-798" },
4023
+ // Postmark
4024
+ VC166: { owasp: "A07:2021", cwe: "CWE-798" },
4025
+ // Resend
4026
+ VC167: { owasp: "A07:2021", cwe: "CWE-798" },
4027
+ // Loops
4028
+ VC168: { owasp: "A07:2021", cwe: "CWE-798" },
4029
+ // Cloudflare
4030
+ VC169: { owasp: "A07:2021", cwe: "CWE-798" },
4031
+ // Fastly
4032
+ VC170: { owasp: "A07:2021", cwe: "CWE-798" },
4033
+ // Netlify
4034
+ VC171: { owasp: "A07:2021", cwe: "CWE-798" },
4035
+ // Railway
4036
+ VC172: { owasp: "A07:2021", cwe: "CWE-798" },
4037
+ // Fly.io
4038
+ VC173: { owasp: "A07:2021", cwe: "CWE-798" },
4039
+ // Algolia admin key
4040
+ VC174: { owasp: "A07:2021", cwe: "CWE-798" },
4041
+ // Qdrant
4042
+ VC175: { owasp: "A07:2021", cwe: "CWE-798" },
4043
+ // Weaviate
4044
+ VC176: { owasp: "A07:2021", cwe: "CWE-798" },
4045
+ // Linear
4046
+ VC177: { owasp: "A07:2021", cwe: "CWE-798" },
4047
+ // Notion
4048
+ VC178: { owasp: "A07:2021", cwe: "CWE-798" },
4049
+ // Discord bot token
4050
+ VC179: { owasp: "A07:2021", cwe: "CWE-798" },
4051
+ // Intercom
4052
+ VC180: { owasp: "A07:2021", cwe: "CWE-798" },
4053
+ // Sentry auth token
4054
+ VC181: { owasp: "A07:2021", cwe: "CWE-798" },
4055
+ // Logtail / Better Stack
4056
+ VC182: { owasp: "A07:2021", cwe: "CWE-798" },
4057
+ // Highlight
4058
+ VC183: { owasp: "A07:2021", cwe: "CWE-798" },
4059
+ // Plivo
4060
+ // VC184–VC187: GitHub Actions workflow security
4061
+ VC184: { owasp: "A08:2021", cwe: "CWE-829" },
4062
+ // pull_request_target + checkout PR head
4063
+ VC185: { owasp: "A05:2021", cwe: "CWE-732" },
4064
+ // permissions: write-all
4065
+ VC186: { owasp: "A03:2021", cwe: "CWE-78" },
4066
+ // expression injection in run:
4067
+ VC187: { owasp: "A08:2021", cwe: "CWE-829" },
4068
+ // third-party action receiving secrets
4069
+ // VC188–VC190: Dockerfile hardening
4070
+ VC188: { owasp: "A05:2021", cwe: "CWE-1357" },
4071
+ // ADD instead of COPY
4072
+ VC189: { owasp: "A08:2021", cwe: "CWE-494" },
4073
+ // RUN curl|sh
4074
+ VC190: { owasp: "A04:2021", cwe: "CWE-754" },
4075
+ // missing HEALTHCHECK
4076
+ // VC191–VC197: Python-specific security gaps
4077
+ VC191: { owasp: "A02:2021", cwe: "CWE-295" },
4078
+ // requests verify=False
4079
+ VC192: { owasp: "A03:2021", cwe: "CWE-79" },
4080
+ // Jinja2 autoescape=False
4081
+ VC193: { owasp: "A04:2021", cwe: "CWE-377" },
4082
+ // tempfile.mktemp TOCTOU
4083
+ VC194: { owasp: "A03:2021", cwe: "CWE-79" },
4084
+ // Django mark_safe
4085
+ VC195: { owasp: "A02:2021", cwe: "CWE-295" },
4086
+ // paramiko AutoAddPolicy
4087
+ VC196: { owasp: "A05:2021", cwe: "CWE-20" },
4088
+ // ALLOWED_HOSTS wildcard
4089
+ VC197: { owasp: "A02:2021", cwe: "CWE-347" },
4090
+ // PyJWT no algorithm allowlist
4091
+ // VC198–VC203: AI / LLM-specific security
4092
+ VC198: { owasp: "A03:2021", cwe: "CWE-94" },
4093
+ // prompt injection via user input
4094
+ VC199: { owasp: "A03:2021", cwe: "CWE-94" },
4095
+ // system-prompt injection
4096
+ VC200: { owasp: "A03:2021", cwe: "CWE-79" },
4097
+ // LLM output as raw HTML (XSS)
4098
+ VC201: { owasp: "A01:2021", cwe: "CWE-639" },
4099
+ // vector-store query without user filter
4100
+ VC202: { owasp: "A01:2021", cwe: "CWE-639" },
4101
+ // vector-store upsert without user metadata
4102
+ VC203: { owasp: "A04:2021", cwe: "CWE-770" },
4103
+ // LLM call without max_tokens
4104
+ // VC204–VC206: GraphQL server hardening
4105
+ VC204: { owasp: "A04:2021", cwe: "CWE-770" },
4106
+ // no query depth limit
4107
+ VC205: { owasp: "A04:2021", cwe: "CWE-770" },
4108
+ // no query complexity limit
4109
+ VC206: { owasp: "A01:2021", cwe: "CWE-352" }
4110
+ // Apollo csrfPrevention: false
3080
4111
  };
3081
4112
  var consoleLogProduction = {
3082
4113
  id: "VC097",
@@ -4421,208 +5452,1535 @@ var hardcodedPineconeKey = {
4421
5452
  );
4422
5453
  }
4423
5454
  };
4424
- var secretInURLParam = {
4425
- id: "VC146",
4426
- title: "Secret Passed in URL Query Parameter",
4427
- severity: "critical",
5455
+ function contextSecretRuleCheck(content, filePath, pattern, ruleId, title, severity, fix) {
5456
+ if (isTestFile(filePath)) return [];
5457
+ if (!SECRET_FILE_EXT.test(filePath)) return [];
5458
+ if (LOCK_FILE_RE.test(filePath)) return [];
5459
+ const findings = [];
5460
+ const re = new RegExp(pattern.source, pattern.flags.includes("g") ? pattern.flags : `${pattern.flags}g`);
5461
+ let m;
5462
+ while ((m = re.exec(content)) !== null) {
5463
+ if (isCommentLine(content, m.index)) continue;
5464
+ if (isInsideFixMessage(content, m.index)) continue;
5465
+ const lineStart = content.lastIndexOf("\n", m.index - 1) + 1;
5466
+ const lineText = content.substring(lineStart, content.indexOf("\n", m.index));
5467
+ if (PLACEHOLDER_RE.test(lineText)) continue;
5468
+ const lineNum = content.substring(0, m.index).split("\n").length;
5469
+ findings.push({
5470
+ rule: ruleId,
5471
+ title,
5472
+ severity,
5473
+ category: "Secrets",
5474
+ file: filePath,
5475
+ line: lineNum,
5476
+ snippet: getSnippet(content, lineNum),
5477
+ fix
5478
+ });
5479
+ }
5480
+ return findings;
5481
+ }
5482
+ var hardcodedCohereKey = {
5483
+ id: "VC159",
5484
+ title: "Hardcoded Cohere API Key",
5485
+ severity: "high",
4428
5486
  category: "Secrets",
4429
- description: "API keys or tokens in URL query parameters are logged in server access logs, browser history, referrer headers, and proxy logs. Secrets in URLs are one of the most common causes of credential exposure.",
5487
+ description: "Cohere API keys grant access to all model endpoints (generation, embeddings, classification) and incur charges per token. A leaked key can be used to run unlimited inference at your expense.",
4430
5488
  check(content, filePath) {
4431
- if (isTestFile(filePath)) return [];
4432
- if (!filePath.match(/\.(js|ts|jsx|tsx|py|rb|go|java|php)$/)) return [];
4433
- const findings = [];
4434
- const patterns = [
4435
- // Template literals: `?api_key=${secret}` or `&token=${token}`
4436
- /[?&](?:api_key|apikey|api_secret|token|access_token|secret|key|password|auth|authorization)=\$\{/gi,
4437
- // String concat: '?key=' + apiKey
4438
- /[?&](?:api_key|apikey|api_secret|token|access_token|secret|key|password|auth)=["']\s*\+/gi,
4439
- // Python f-strings: f"?token={token}"
4440
- /[?&](?:api_key|apikey|token|access_token|secret|key|password)=\{[a-zA-Z_]/g
4441
- ];
4442
- for (const p of patterns) {
4443
- let m;
4444
- const re = new RegExp(p.source, p.flags.includes("g") ? p.flags : `${p.flags}g`);
4445
- while ((m = re.exec(content)) !== null) {
4446
- if (isCommentLine(content, m.index)) continue;
4447
- if (isInsideFixMessage(content, m.index)) continue;
4448
- const lineNum = content.substring(0, m.index).split("\n").length;
4449
- findings.push({
4450
- rule: "VC146",
4451
- title: this.title,
4452
- severity: "critical",
4453
- category: "Secrets",
4454
- file: filePath,
4455
- line: lineNum,
4456
- snippet: getSnippet(content, lineNum),
4457
- fix: "Pass secrets in the Authorization header (Bearer token) or request body, never in URL parameters. URL parameters are logged in server access logs, browser history, and referrer headers."
4458
- });
4459
- }
4460
- }
4461
- return findings;
5489
+ return contextSecretRuleCheck(
5490
+ content,
5491
+ filePath,
5492
+ /(?:COHERE_API_KEY|cohere[_-]?api[_-]?key)\s*[:=]\s*["'`]([A-Za-z0-9]{40})["'`]/gi,
5493
+ "VC159",
5494
+ this.title,
5495
+ "high",
5496
+ "Move the Cohere API key to an environment variable (COHERE_API_KEY). Rotate at dashboard.cohere.com \u2192 API keys."
5497
+ );
4462
5498
  }
4463
5499
  };
4464
- var secretLoggedToConsole = {
4465
- id: "VC147",
4466
- title: "Secret Logged to Console",
5500
+ var hardcodedReplicateKey = {
5501
+ id: "VC160",
5502
+ title: "Hardcoded Replicate API Token",
4467
5503
  severity: "high",
4468
5504
  category: "Secrets",
4469
- description: "Logging variables that appear to contain secrets (key, token, password, secret) writes credentials to stdout, log files, and monitoring services where they can be harvested.",
5505
+ description: "Replicate API tokens (r8_*) grant access to run any model in the Replicate catalog and incur charges per second of GPU time. A leaked token can run expensive image/video models at your expense.",
4470
5506
  check(content, filePath) {
4471
- if (isTestFile(filePath)) return [];
4472
- if (!filePath.match(/\.(js|ts|jsx|tsx)$/)) return [];
4473
- const findings = [];
4474
- const pattern = /console\.(?:log|debug|info|warn|error)\s*\([^)]*\b(api[_-]?key|apikey|secret|token|password|passwd|credentials|private[_-]?key|auth[_-]?token|access[_-]?token)\b/gi;
4475
- let m;
4476
- while ((m = pattern.exec(content)) !== null) {
4477
- if (isCommentLine(content, m.index)) continue;
4478
- if (isInsideFixMessage(content, m.index)) continue;
4479
- const lineNum = content.substring(0, m.index).split("\n").length;
4480
- findings.push({
4481
- rule: "VC147",
4482
- title: this.title,
4483
- severity: "high",
4484
- category: "Secrets",
4485
- file: filePath,
4486
- line: lineNum,
4487
- snippet: getSnippet(content, lineNum),
4488
- fix: "Remove this console statement or redact the secret before logging. Use structured logging with a secret-redaction filter in production."
4489
- });
4490
- }
4491
- return findings;
5507
+ return secretRuleCheck(
5508
+ content,
5509
+ filePath,
5510
+ /r8_[A-Za-z0-9]{40,}/g,
5511
+ "VC160",
5512
+ this.title,
5513
+ "high",
5514
+ "Move the Replicate token to an environment variable (REPLICATE_API_TOKEN). Rotate at replicate.com \u2192 Account \u2192 API tokens."
5515
+ );
4492
5516
  }
4493
5517
  };
4494
- var secretInErrorResponse = {
4495
- id: "VC148",
4496
- title: "Secret Leaked in Error Response",
4497
- severity: "critical",
5518
+ var hardcodedMistralKey = {
5519
+ id: "VC161",
5520
+ title: "Hardcoded Mistral API Key",
5521
+ severity: "high",
4498
5522
  category: "Secrets",
4499
- description: "Returning secrets or secret-named variables in API error responses exposes credentials to anyone who can trigger the error, including unauthenticated users.",
5523
+ description: "Mistral API keys grant access to all chat and embedding models and incur charges per token. A leaked key can be used to run unlimited inference at your expense.",
4500
5524
  check(content, filePath) {
4501
- if (isTestFile(filePath)) return [];
4502
- if (!filePath.match(/\.(js|ts|jsx|tsx)$/)) return [];
4503
- const findings = [];
4504
- const pattern = /(?:res\.(?:json|send|status\s*\([^)]*\)\s*\.json))\s*\(\s*\{[^}]*\b(api[_-]?key|secret|token|password|credentials|private[_-]?key|process\.env\.[A-Z_]*(?:KEY|SECRET|TOKEN|PASSWORD))\b/gi;
4505
- let m;
4506
- while ((m = pattern.exec(content)) !== null) {
4507
- if (isCommentLine(content, m.index)) continue;
4508
- if (isInsideFixMessage(content, m.index)) continue;
4509
- const lineNum = content.substring(0, m.index).split("\n").length;
4510
- findings.push({
4511
- rule: "VC148",
4512
- title: this.title,
4513
- severity: "critical",
4514
- category: "Secrets",
4515
- file: filePath,
4516
- line: lineNum,
4517
- snippet: getSnippet(content, lineNum),
4518
- fix: "Never include secrets in API responses. Return a generic error message and log the detailed error server-side only."
4519
- });
4520
- }
4521
- return findings;
5525
+ return contextSecretRuleCheck(
5526
+ content,
5527
+ filePath,
5528
+ /(?:MISTRAL_API_KEY|mistral[_-]?api[_-]?key)\s*[:=]\s*["'`]([A-Za-z0-9]{32})["'`]/gi,
5529
+ "VC161",
5530
+ this.title,
5531
+ "high",
5532
+ "Move the Mistral key to an environment variable (MISTRAL_API_KEY). Rotate at console.mistral.ai \u2192 API Keys."
5533
+ );
4522
5534
  }
4523
5535
  };
4524
- var secretInBundleConfig = {
4525
- id: "VC149",
4526
- title: "Secret in Client-Side Bundle Configuration",
4527
- severity: "critical",
5536
+ var hardcodedTogetherKey = {
5537
+ id: "VC162",
5538
+ title: "Hardcoded Together AI API Key",
5539
+ severity: "high",
4528
5540
  category: "Secrets",
4529
- description: "Secrets defined in Webpack DefinePlugin, Vite define, or Next.js publicRuntimeConfig are embedded into the client-side JavaScript bundle and visible to anyone viewing the page source.",
5541
+ description: "Together AI API keys grant access to all open-source models hosted on the platform (Llama, Mixtral, Stable Diffusion, etc.) and incur charges per token. A leaked key can run unlimited inference at your expense.",
4530
5542
  check(content, filePath) {
4531
- if (isTestFile(filePath)) return [];
4532
- if (!filePath.match(/(?:webpack|vite|next)\.config\.|\.config\.(js|ts|mjs)$/)) return [];
4533
- const findings = [];
4534
- const patterns = [
4535
- // Webpack DefinePlugin with secret-named key
4536
- /DefinePlugin\s*\(\s*\{[^}]*\b(?:API_KEY|SECRET|TOKEN|PASSWORD|PRIVATE_KEY|CLIENT_SECRET)\b/gi,
4537
- // Vite define with secret-named key
4538
- /define\s*:\s*\{[^}]*\b(?:API_KEY|SECRET|TOKEN|PASSWORD|PRIVATE_KEY|CLIENT_SECRET)\b/gi,
4539
- // Next.js publicRuntimeConfig with secret-named key
4540
- /publicRuntimeConfig\s*:\s*\{[^}]*\b(?:apiKey|secret|token|password|privateKey|clientSecret)\b/gi
4541
- ];
4542
- for (const p of patterns) {
4543
- let m;
4544
- const re = new RegExp(p.source, p.flags.includes("g") ? p.flags : `${p.flags}g`);
4545
- while ((m = re.exec(content)) !== null) {
4546
- if (isCommentLine(content, m.index)) continue;
4547
- if (isInsideFixMessage(content, m.index)) continue;
4548
- const lineNum = content.substring(0, m.index).split("\n").length;
4549
- findings.push({
4550
- rule: "VC149",
4551
- title: this.title,
4552
- severity: "critical",
4553
- category: "Secrets",
4554
- file: filePath,
4555
- line: lineNum,
4556
- snippet: getSnippet(content, lineNum),
4557
- fix: "Move secrets to server-side environment variables. Only expose public configuration (like API base URLs) in client-side bundle config. Use serverRuntimeConfig (Next.js) or server-only modules."
4558
- });
4559
- }
4560
- }
4561
- return findings;
5543
+ return contextSecretRuleCheck(
5544
+ content,
5545
+ filePath,
5546
+ /(?:TOGETHER_API_KEY|together[_-]?api[_-]?key)\s*[:=]\s*["'`]([a-f0-9]{64})["'`]/gi,
5547
+ "VC162",
5548
+ this.title,
5549
+ "high",
5550
+ "Move the Together AI key to an environment variable (TOGETHER_API_KEY). Rotate at api.together.ai \u2192 Settings \u2192 API Keys."
5551
+ );
4562
5552
  }
4563
5553
  };
4564
- var secretInHTMLAttribute = {
4565
- id: "VC150",
4566
- title: "Secret in HTML Meta Tag or Data Attribute",
5554
+ var hardcodedGroqKey = {
5555
+ id: "VC163",
5556
+ title: "Hardcoded Groq API Key",
4567
5557
  severity: "high",
4568
5558
  category: "Secrets",
4569
- description: "API keys or tokens embedded in HTML meta tags or data-* attributes are visible in the page source to anyone who visits the page, including search engine crawlers.",
5559
+ description: "Groq API keys (gsk_*) grant access to all hosted models on Groq's LPU inference platform and incur per-token charges. A leaked key can be used to run unlimited inference at your expense.",
4570
5560
  check(content, filePath) {
4571
- if (isTestFile(filePath)) return [];
4572
- if (!filePath.match(/\.(html|htm|jsx|tsx|vue|svelte|ejs|hbs|pug)$/)) return [];
4573
- const findings = [];
4574
- const patterns = [
4575
- // <meta name="api-key" content="...">
4576
- /<meta\s[^>]*name\s*=\s*["'](?:api[_-]?key|secret|token|password)[^>]*>/gi,
4577
- // data-api-key="actual-value" (not a template/binding)
4578
- /data-(?:api[_-]?key|secret|token|password|auth)\s*=\s*["'][a-zA-Z0-9_\-]{12,}["']/gi
4579
- ];
4580
- for (const p of patterns) {
4581
- let m;
4582
- const re = new RegExp(p.source, p.flags.includes("g") ? p.flags : `${p.flags}g`);
4583
- while ((m = re.exec(content)) !== null) {
4584
- if (isCommentLine(content, m.index)) continue;
4585
- if (isInsideFixMessage(content, m.index)) continue;
4586
- const lineNum = content.substring(0, m.index).split("\n").length;
4587
- findings.push({
4588
- rule: "VC150",
4589
- title: this.title,
4590
- severity: "high",
4591
- category: "Secrets",
4592
- file: filePath,
4593
- line: lineNum,
4594
- snippet: getSnippet(content, lineNum),
4595
- fix: "Never embed secrets in HTML attributes or meta tags. Load configuration from server-side APIs or use server-rendered environment injection with non-secret values only."
4596
- });
4597
- }
4598
- }
4599
- return findings;
5561
+ return secretRuleCheck(
5562
+ content,
5563
+ filePath,
5564
+ /gsk_[A-Za-z0-9]{52,}/g,
5565
+ "VC163",
5566
+ this.title,
5567
+ "high",
5568
+ "Move the Groq key to an environment variable (GROQ_API_KEY). Rotate at console.groq.com \u2192 API Keys."
5569
+ );
4600
5570
  }
4601
5571
  };
4602
- var secretInCLIArgument = {
4603
- id: "VC151",
4604
- title: "Secret Passed as Command-Line Argument",
5572
+ var hardcodedFireworksKey = {
5573
+ id: "VC164",
5574
+ title: "Hardcoded Fireworks AI API Key",
4605
5575
  severity: "high",
4606
5576
  category: "Secrets",
4607
- description: "Secrets interpolated into exec/spawn/execSync command strings are visible in process listings (ps aux), shell history, and system audit logs to any user on the same machine.",
5577
+ description: "Fireworks AI API keys (fw_*) grant access to hosted open-source models and incur per-token charges. A leaked key can be used to run unlimited inference at your expense.",
4608
5578
  check(content, filePath) {
4609
- if (isTestFile(filePath)) return [];
4610
- if (!filePath.match(/\.(js|ts|jsx|tsx|py|rb)$/)) return [];
4611
- const findings = [];
4612
- const patterns = [
4613
- /(?:exec|execSync|spawn|spawnSync|child_process)\s*\([^)]*\$\{[^}]*(?:api[_-]?key|secret|token|password|credentials)/gi,
4614
- /(?:exec|execSync|spawn|spawnSync|child_process)\s*\([^)]*["']\s*\+\s*(?:api[_-]?key|secret|token|password|credentials)/gi,
4615
- /(?:subprocess|os\.system|os\.popen)\s*\([^)]*\{[^}]*(?:api[_-]?key|secret|token|password|credentials)/gi
4616
- ];
4617
- for (const p of patterns) {
4618
- let m;
4619
- const re = new RegExp(p.source, p.flags.includes("g") ? p.flags : `${p.flags}g`);
4620
- while ((m = re.exec(content)) !== null) {
4621
- if (isCommentLine(content, m.index)) continue;
4622
- if (isInsideFixMessage(content, m.index)) continue;
4623
- const lineNum = content.substring(0, m.index).split("\n").length;
4624
- findings.push({
4625
- rule: "VC151",
5579
+ return secretRuleCheck(
5580
+ content,
5581
+ filePath,
5582
+ /fw_[A-Za-z0-9]{20,}/g,
5583
+ "VC164",
5584
+ this.title,
5585
+ "high",
5586
+ "Move the Fireworks key to an environment variable (FIREWORKS_API_KEY). Rotate at fireworks.ai \u2192 API Keys."
5587
+ );
5588
+ }
5589
+ };
5590
+ var hardcodedPostmarkKey = {
5591
+ id: "VC165",
5592
+ title: "Hardcoded Postmark Server Token",
5593
+ severity: "high",
5594
+ category: "Secrets",
5595
+ description: "Postmark server tokens grant the ability to send emails as your domain, view delivery logs, and manage templates. A leaked token enables phishing from your verified sending domain.",
5596
+ check(content, filePath) {
5597
+ return contextSecretRuleCheck(
5598
+ content,
5599
+ filePath,
5600
+ /(?:POSTMARK_(?:API|SERVER)_TOKEN|postmark[_-]?(?:server|api)[_-]?token)\s*[:=]\s*["'`]([a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12})["'`]/gi,
5601
+ "VC165",
5602
+ this.title,
5603
+ "high",
5604
+ "Move the Postmark token to an environment variable (POSTMARK_SERVER_TOKEN). Rotate at account.postmarkapp.com \u2192 Servers \u2192 API Tokens."
5605
+ );
5606
+ }
5607
+ };
5608
+ var hardcodedResendKey = {
5609
+ id: "VC166",
5610
+ title: "Hardcoded Resend API Key",
5611
+ severity: "high",
5612
+ category: "Secrets",
5613
+ description: "Resend API keys (re_*) can send emails as your domain, access email logs, and manage domains. A leaked key enables phishing from your verified sending domain.",
5614
+ check(content, filePath) {
5615
+ return secretRuleCheck(
5616
+ content,
5617
+ filePath,
5618
+ /re_[A-Za-z0-9_]{20,}/g,
5619
+ "VC166",
5620
+ this.title,
5621
+ "high",
5622
+ "Move the Resend API key to an environment variable (RESEND_API_KEY). Rotate at resend.com \u2192 API Keys."
5623
+ );
5624
+ }
5625
+ };
5626
+ var hardcodedLoopsKey = {
5627
+ id: "VC167",
5628
+ title: "Hardcoded Loops API Key",
5629
+ severity: "high",
5630
+ category: "Secrets",
5631
+ description: "Loops API keys grant access to your contact list, transactional email sending, and audience segmentation. A leaked key can exfiltrate your customer list and send unauthorized emails.",
5632
+ check(content, filePath) {
5633
+ return contextSecretRuleCheck(
5634
+ content,
5635
+ filePath,
5636
+ /(?:LOOPS_API_KEY|loops[_-]?api[_-]?key)\s*[:=]\s*["'`]([A-Za-z0-9]{32,})["'`]/gi,
5637
+ "VC167",
5638
+ this.title,
5639
+ "high",
5640
+ "Move the Loops API key to an environment variable (LOOPS_API_KEY). Rotate at app.loops.so \u2192 Settings \u2192 API."
5641
+ );
5642
+ }
5643
+ };
5644
+ var hardcodedCloudflareToken = {
5645
+ id: "VC168",
5646
+ title: "Hardcoded Cloudflare API Token",
5647
+ severity: "critical",
5648
+ category: "Secrets",
5649
+ description: "Cloudflare API tokens grant access to DNS records, SSL configuration, Workers, R2 storage, and account settings depending on token scope. A leaked token can hijack DNS, intercept traffic, or wipe storage.",
5650
+ check(content, filePath) {
5651
+ return contextSecretRuleCheck(
5652
+ content,
5653
+ filePath,
5654
+ /(?:CLOUDFLARE_API_TOKEN|CF_API_TOKEN|cloudflare[_-]?api[_-]?token)\s*[:=]\s*["'`]([A-Za-z0-9_\-]{40})["'`]/gi,
5655
+ "VC168",
5656
+ this.title,
5657
+ "critical",
5658
+ "Move the Cloudflare token to an environment variable (CLOUDFLARE_API_TOKEN). Rotate at dash.cloudflare.com \u2192 My Profile \u2192 API Tokens."
5659
+ );
5660
+ }
5661
+ };
5662
+ var hardcodedFastlyToken = {
5663
+ id: "VC169",
5664
+ title: "Hardcoded Fastly API Token",
5665
+ severity: "high",
5666
+ category: "Secrets",
5667
+ description: "Fastly API tokens can purge cache, modify VCL configuration, and access service settings. A leaked token can disrupt CDN caching or redirect traffic via VCL changes.",
5668
+ check(content, filePath) {
5669
+ return contextSecretRuleCheck(
5670
+ content,
5671
+ filePath,
5672
+ /(?:FASTLY_API_(?:KEY|TOKEN)|fastly[_-]?api[_-]?(?:key|token))\s*[:=]\s*["'`]([A-Za-z0-9_\-]{32,})["'`]/gi,
5673
+ "VC169",
5674
+ this.title,
5675
+ "high",
5676
+ "Move the Fastly token to an environment variable (FASTLY_API_TOKEN). Rotate at manage.fastly.com \u2192 Account \u2192 API tokens."
5677
+ );
5678
+ }
5679
+ };
5680
+ var hardcodedNetlifyToken = {
5681
+ id: "VC170",
5682
+ title: "Hardcoded Netlify Personal Access Token",
5683
+ severity: "critical",
5684
+ category: "Secrets",
5685
+ description: "Netlify access tokens (nfp_*) grant access to deploy any site, modify environment variables (which may contain other secrets), and manage team settings. A leaked token can compromise production deployments.",
5686
+ check(content, filePath) {
5687
+ return secretRuleCheck(
5688
+ content,
5689
+ filePath,
5690
+ /nfp_[A-Za-z0-9_\-]{20,}/g,
5691
+ "VC170",
5692
+ this.title,
5693
+ "critical",
5694
+ "Move the Netlify token to an environment variable (NETLIFY_AUTH_TOKEN). Rotate at app.netlify.com \u2192 User Settings \u2192 Applications \u2192 Personal access tokens."
5695
+ );
5696
+ }
5697
+ };
5698
+ var hardcodedRailwayToken = {
5699
+ id: "VC171",
5700
+ title: "Hardcoded Railway API Token",
5701
+ severity: "critical",
5702
+ category: "Secrets",
5703
+ description: "Railway API tokens grant project deployment, environment variable management, and database access. A leaked token can read all your project secrets and modify production services.",
5704
+ check(content, filePath) {
5705
+ return contextSecretRuleCheck(
5706
+ content,
5707
+ filePath,
5708
+ /(?:RAILWAY_API_TOKEN|RAILWAY_TOKEN|railway[_-]?api[_-]?token)\s*[:=]\s*["'`]([a-f0-9]{8}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{4}-[a-f0-9]{12})["'`]/gi,
5709
+ "VC171",
5710
+ this.title,
5711
+ "critical",
5712
+ "Move the Railway token to an environment variable (RAILWAY_TOKEN). Rotate at railway.app \u2192 Account Settings \u2192 Tokens."
5713
+ );
5714
+ }
5715
+ };
5716
+ var hardcodedFlyToken = {
5717
+ id: "VC172",
5718
+ title: "Hardcoded Fly.io Auth Token",
5719
+ severity: "critical",
5720
+ category: "Secrets",
5721
+ description: "Fly.io tokens (FlyV1 fm2_*) grant access to deploy and configure any app in your organization, including modifying secrets and machines. A leaked token can compromise production infrastructure.",
5722
+ check(content, filePath) {
5723
+ return secretRuleCheck(
5724
+ content,
5725
+ filePath,
5726
+ /FlyV1\s+fm2_[A-Za-z0-9+/=_\-]{40,}/g,
5727
+ "VC172",
5728
+ this.title,
5729
+ "critical",
5730
+ "Move the Fly.io token to an environment variable (FLY_API_TOKEN). Rotate via `fly tokens revoke` and `fly tokens create deploy`."
5731
+ );
5732
+ }
5733
+ };
5734
+ var hardcodedAlgoliaAdminKey = {
5735
+ id: "VC173",
5736
+ title: "Hardcoded Algolia Admin API Key",
5737
+ severity: "critical",
5738
+ category: "Secrets",
5739
+ description: "Algolia admin API keys grant full access to manage indices, modify records, and create/delete API keys. A leaked admin key exposes all search data and lets attackers replace indexed content.",
5740
+ check(content, filePath) {
5741
+ return contextSecretRuleCheck(
5742
+ content,
5743
+ filePath,
5744
+ /(?:ALGOLIA_ADMIN_(?:API_)?KEY|algolia[_-]?admin[_-]?(?:api[_-]?)?key)\s*[:=]\s*["'`]([a-f0-9]{32})["'`]/gi,
5745
+ "VC173",
5746
+ this.title,
5747
+ "critical",
5748
+ "Move the Algolia admin key to a server-side environment variable (ALGOLIA_ADMIN_KEY). NEVER expose admin keys to the client \u2014 use search-only API keys for browser code. Rotate at dashboard.algolia.com \u2192 API Keys."
5749
+ );
5750
+ }
5751
+ };
5752
+ var hardcodedQdrantKey = {
5753
+ id: "VC174",
5754
+ title: "Hardcoded Qdrant API Key",
5755
+ severity: "high",
5756
+ category: "Secrets",
5757
+ description: "Qdrant API keys grant read/write access to all vector collections in your cluster. A leaked key exposes your vector database and the embeddings stored in it.",
5758
+ check(content, filePath) {
5759
+ return contextSecretRuleCheck(
5760
+ content,
5761
+ filePath,
5762
+ /(?:QDRANT_API_KEY|qdrant[_-]?api[_-]?key)\s*[:=]\s*["'`]([A-Za-z0-9_\-\.]{30,})["'`]/gi,
5763
+ "VC174",
5764
+ this.title,
5765
+ "high",
5766
+ "Move the Qdrant API key to an environment variable (QDRANT_API_KEY). Rotate in your Qdrant Cloud dashboard \u2192 API Keys."
5767
+ );
5768
+ }
5769
+ };
5770
+ var hardcodedWeaviateKey = {
5771
+ id: "VC175",
5772
+ title: "Hardcoded Weaviate API Key",
5773
+ severity: "high",
5774
+ category: "Secrets",
5775
+ description: "Weaviate API keys grant read/write access to all classes and objects in your vector database. A leaked key exposes embeddings and metadata for every document indexed.",
5776
+ check(content, filePath) {
5777
+ return contextSecretRuleCheck(
5778
+ content,
5779
+ filePath,
5780
+ /(?:WEAVIATE_API_KEY|weaviate[_-]?api[_-]?key)\s*[:=]\s*["'`]([A-Za-z0-9_\-]{20,})["'`]/gi,
5781
+ "VC175",
5782
+ this.title,
5783
+ "high",
5784
+ "Move the Weaviate API key to an environment variable (WEAVIATE_API_KEY). Rotate in your Weaviate Cloud Services console \u2192 Cluster details."
5785
+ );
5786
+ }
5787
+ };
5788
+ var hardcodedLinearKey = {
5789
+ id: "VC176",
5790
+ title: "Hardcoded Linear API Key",
5791
+ severity: "high",
5792
+ category: "Secrets",
5793
+ description: "Linear API keys (lin_api_*) grant read/write access to all issues, projects, and team data. A leaked key exposes private roadmap, customer-reported bugs, and internal discussion.",
5794
+ check(content, filePath) {
5795
+ return secretRuleCheck(
5796
+ content,
5797
+ filePath,
5798
+ /lin_(?:api|oauth)_[A-Za-z0-9]{40,}/g,
5799
+ "VC176",
5800
+ this.title,
5801
+ "high",
5802
+ "Move the Linear key to an environment variable (LINEAR_API_KEY). Rotate at linear.app \u2192 Settings \u2192 API \u2192 Personal API keys."
5803
+ );
5804
+ }
5805
+ };
5806
+ var hardcodedNotionKey = {
5807
+ id: "VC177",
5808
+ title: "Hardcoded Notion Integration Token",
5809
+ severity: "high",
5810
+ category: "Secrets",
5811
+ description: "Notion integration tokens (secret_*) grant access to every page and database the integration is connected to, including content, comments, and member info. A leaked token exposes private workspace data.",
5812
+ check(content, filePath) {
5813
+ return secretRuleCheck(
5814
+ content,
5815
+ filePath,
5816
+ /secret_[A-Za-z0-9]{43}/g,
5817
+ "VC177",
5818
+ this.title,
5819
+ "high",
5820
+ "Move the Notion token to an environment variable (NOTION_TOKEN). Rotate at notion.so/profile/integrations."
5821
+ );
5822
+ }
5823
+ };
5824
+ var hardcodedDiscordToken = {
5825
+ id: "VC178",
5826
+ title: "Hardcoded Discord Bot Token",
5827
+ severity: "critical",
5828
+ category: "Secrets",
5829
+ description: "Discord bot tokens grant full control over the bot's actions in every guild it has joined: reading messages, sending messages, managing channels, and accessing member data per intent scopes. A leaked token can be used to spam, exfiltrate messages, or take over channels.",
5830
+ check(content, filePath) {
5831
+ return secretRuleCheck(
5832
+ content,
5833
+ filePath,
5834
+ /[MNO][A-Za-z\d_\-]{23,28}\.[\w\-]{6,7}\.[\w\-]{27,38}/g,
5835
+ "VC178",
5836
+ this.title,
5837
+ "critical",
5838
+ "Move the Discord token to an environment variable (DISCORD_TOKEN). Reset immediately at discord.com/developers/applications \u2192 your bot \u2192 Bot \u2192 Reset Token."
5839
+ );
5840
+ }
5841
+ };
5842
+ var hardcodedIntercomToken = {
5843
+ id: "VC179",
5844
+ title: "Hardcoded Intercom Access Token",
5845
+ severity: "high",
5846
+ category: "Secrets",
5847
+ description: "Intercom access tokens grant access to all customer conversations, contact records, and company data. A leaked token exposes customer PII and support history.",
5848
+ check(content, filePath) {
5849
+ return contextSecretRuleCheck(
5850
+ content,
5851
+ filePath,
5852
+ /(?:INTERCOM_ACCESS_TOKEN|intercom[_-]?access[_-]?token|intercom[_-]?api[_-]?key)\s*[:=]\s*["'`]([A-Za-z0-9_=+/\-]{50,})["'`]/gi,
5853
+ "VC179",
5854
+ this.title,
5855
+ "high",
5856
+ "Move the Intercom token to an environment variable (INTERCOM_ACCESS_TOKEN). Rotate at app.intercom.com \u2192 Settings \u2192 Developers \u2192 Apps."
5857
+ );
5858
+ }
5859
+ };
5860
+ var hardcodedSentryAuthToken = {
5861
+ id: "VC180",
5862
+ title: "Hardcoded Sentry Auth Token",
5863
+ severity: "high",
5864
+ category: "Secrets",
5865
+ description: "Sentry auth tokens (sntrys_*) grant access to error data across every project the token is scoped to, plus the ability to manage releases, projects, and source maps. A leaked token exposes stack traces, PII captured in errors, and lets attackers tamper with release artifacts.",
5866
+ check(content, filePath) {
5867
+ return secretRuleCheck(
5868
+ content,
5869
+ filePath,
5870
+ /sntrys_[A-Za-z0-9_]{40,}/g,
5871
+ "VC180",
5872
+ this.title,
5873
+ "high",
5874
+ "Move the Sentry auth token to an environment variable (SENTRY_AUTH_TOKEN). Rotate at sentry.io \u2192 User Settings \u2192 Auth Tokens."
5875
+ );
5876
+ }
5877
+ };
5878
+ var hardcodedLogtailToken = {
5879
+ id: "VC181",
5880
+ title: "Hardcoded Better Stack (Logtail) Source Token",
5881
+ severity: "high",
5882
+ category: "Secrets",
5883
+ description: "Better Stack / Logtail source tokens grant the ability to write logs to your account. A leaked token lets attackers fill your log retention with junk data, mask their own activity in noise, or rack up your ingestion bill.",
5884
+ check(content, filePath) {
5885
+ return contextSecretRuleCheck(
5886
+ content,
5887
+ filePath,
5888
+ /(?:LOGTAIL_(?:SOURCE_)?TOKEN|BETTERSTACK_(?:SOURCE_)?TOKEN|logtail[_-]?(?:source[_-]?)?token)\s*[:=]\s*["'`]([A-Za-z0-9]{20,})["'`]/gi,
5889
+ "VC181",
5890
+ this.title,
5891
+ "high",
5892
+ "Move the Logtail token to an environment variable (LOGTAIL_SOURCE_TOKEN). Rotate in betterstack.com \u2192 Sources \u2192 Edit."
5893
+ );
5894
+ }
5895
+ };
5896
+ var hardcodedHighlightKey = {
5897
+ id: "VC182",
5898
+ title: "Hardcoded Highlight.io Project ID / API Key",
5899
+ severity: "high",
5900
+ category: "Secrets",
5901
+ description: "Highlight.io API keys grant access to recorded session replays, error data, and console logs from your users' browsers. A leaked key exposes user behavior data and any sensitive content captured in replays.",
5902
+ check(content, filePath) {
5903
+ return contextSecretRuleCheck(
5904
+ content,
5905
+ filePath,
5906
+ /(?:HIGHLIGHT_API_KEY|HIGHLIGHT_PROJECT_ID|highlight[_-]?(?:api[_-]?key|project[_-]?id))\s*[:=]\s*["'`]([A-Za-z0-9_\-]{20,})["'`]/gi,
5907
+ "VC182",
5908
+ this.title,
5909
+ "high",
5910
+ "Move the Highlight key to an environment variable (HIGHLIGHT_API_KEY). Rotate at app.highlight.io \u2192 Project Settings \u2192 API Keys."
5911
+ );
5912
+ }
5913
+ };
5914
+ var hardcodedPlivoToken = {
5915
+ id: "VC183",
5916
+ title: "Hardcoded Plivo Auth Token",
5917
+ severity: "high",
5918
+ category: "Secrets",
5919
+ description: "Plivo auth tokens grant the ability to send SMS, place calls, and access call/message logs. A leaked token enables toll fraud and unauthorized communications billed to your account.",
5920
+ check(content, filePath) {
5921
+ return contextSecretRuleCheck(
5922
+ content,
5923
+ filePath,
5924
+ /(?:PLIVO_AUTH_TOKEN|plivo[_-]?auth[_-]?token)\s*[:=]\s*["'`]([A-Za-z0-9]{40,})["'`]/gi,
5925
+ "VC183",
5926
+ this.title,
5927
+ "high",
5928
+ "Move the Plivo token to an environment variable (PLIVO_AUTH_TOKEN). Rotate at console.plivo.com \u2192 Account \u2192 API Keys & Credentials."
5929
+ );
5930
+ }
5931
+ };
5932
+ var GHA_WORKFLOW_RE = /\.github\/workflows\/.*\.(yml|yaml)$/;
5933
+ var ghaPullRequestTargetCheckout = {
5934
+ id: "VC184",
5935
+ title: "GitHub Actions: pull_request_target with checkout of PR head",
5936
+ severity: "critical",
5937
+ category: "Supply Chain",
5938
+ description: "Workflows triggered by `pull_request_target` run with the base repository's secrets and write permissions. Checking out the PR's head ref (or sha) and then executing any code from that checkout \u2014 install scripts, build steps, lint hooks \u2014 gives attackers in any forked PR full code execution with your repository's secrets. This is the canonical \"pwn request\" attack pattern.",
5939
+ check(content, filePath) {
5940
+ if (!GHA_WORKFLOW_RE.test(filePath)) return [];
5941
+ if (!/(^|\n)\s*(?:on\s*:\s*\[?[^\]]*pull_request_target|pull_request_target\s*:)/.test(content)) {
5942
+ return [];
5943
+ }
5944
+ const findings = [];
5945
+ const checkoutPattern = /uses\s*:\s*actions\/checkout@[^\n]*[\s\S]{0,400}?ref\s*:\s*\$\{\{\s*github\.event\.pull_request\.head\.(?:ref|sha)\s*\}\}/g;
5946
+ let m;
5947
+ while ((m = checkoutPattern.exec(content)) !== null) {
5948
+ const lineNum = content.substring(0, m.index).split("\n").length;
5949
+ findings.push({
5950
+ rule: "VC184",
5951
+ title: ghaPullRequestTargetCheckout.title,
5952
+ severity: "critical",
5953
+ category: "Supply Chain",
5954
+ file: filePath,
5955
+ line: lineNum,
5956
+ snippet: getSnippet(content, lineNum),
5957
+ fix: "Either (a) switch the trigger to `pull_request` (no secrets, but safe), or (b) keep `pull_request_target` but check out only the BASE ref (don't pass `ref: ${{ github.event.pull_request.head.* }}`), or (c) split into two workflows: a `pull_request` workflow that does the build/test, and a `pull_request_target` workflow that only does the privileged step (commenting, labeling) without executing PR code."
5958
+ });
5959
+ }
5960
+ return findings;
5961
+ }
5962
+ };
5963
+ var ghaPermissionsWriteAll = {
5964
+ id: "VC185",
5965
+ title: "GitHub Actions: permissions set to write-all",
5966
+ severity: "high",
5967
+ category: "Supply Chain",
5968
+ description: "`permissions: write-all` (or omitting `permissions` entirely on a public repo with default-permissive settings) gives every step in the workflow write access to the repo, packages, deployments, and more. If any action in the workflow is compromised \u2014 directly or via a transitive dependency \u2014 it can push commits, modify releases, and exfiltrate secrets. Default-deny + grant only what each job needs.",
5969
+ check(content, filePath) {
5970
+ if (!GHA_WORKFLOW_RE.test(filePath)) return [];
5971
+ const findings = [];
5972
+ const pattern = /(^|\n)(\s*)permissions\s*:\s*write-all\s*(?:#[^\n]*)?$/gm;
5973
+ let m;
5974
+ while ((m = pattern.exec(content)) !== null) {
5975
+ const lineNum = content.substring(0, m.index + m[1].length).split("\n").length;
5976
+ findings.push({
5977
+ rule: "VC185",
5978
+ title: ghaPermissionsWriteAll.title,
5979
+ severity: "high",
5980
+ category: "Supply Chain",
5981
+ file: filePath,
5982
+ line: lineNum,
5983
+ snippet: getSnippet(content, lineNum),
5984
+ fix: "Replace `permissions: write-all` with an explicit allowlist: `permissions:\\n contents: read\\n pull-requests: write` (or whichever scopes the workflow actually needs). See https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs."
5985
+ });
5986
+ }
5987
+ return findings;
5988
+ }
5989
+ };
5990
+ var ghaExpressionInjection = {
5991
+ id: "VC186",
5992
+ title: "GitHub Actions: expression injection in run block",
5993
+ severity: "high",
5994
+ category: "Injection",
5995
+ description: "Interpolating `${{ github.event.* }}` (issue title, PR body, commit message, branch name, etc.) directly into a shell script in a `run:` block lets attackers inject arbitrary shell commands by crafting the trigger payload. Same class of bug as SQL injection \u2014 the value is untrusted and gets evaluated by the shell.",
5996
+ check(content, filePath) {
5997
+ if (!GHA_WORKFLOW_RE.test(filePath)) return [];
5998
+ const findings = [];
5999
+ const pattern = /run\s*:\s*(?:[\|>][^\n]*\n[\s\S]*?|.*?)\$\{\{\s*github\.(?:event\.(?:issue|pull_request|comment|review|discussion)\.[^}]*|head_ref)\s*\}\}/g;
6000
+ let m;
6001
+ while ((m = pattern.exec(content)) !== null) {
6002
+ const interpStart = m[0].lastIndexOf("${{");
6003
+ const absIdx = m.index + interpStart;
6004
+ const lineNum = content.substring(0, absIdx).split("\n").length;
6005
+ findings.push({
6006
+ rule: "VC186",
6007
+ title: ghaExpressionInjection.title,
6008
+ severity: "high",
6009
+ category: "Injection",
6010
+ file: filePath,
6011
+ line: lineNum,
6012
+ snippet: getSnippet(content, lineNum),
6013
+ fix: 'Don\'t interpolate untrusted `github.event.*` values directly into shell scripts. Instead, pass them via env vars: `env:\\n TITLE: ${{ github.event.issue.title }}\\nrun: echo "$TITLE"`. Env var expansion in the shell is safe; expression interpolation is not.'
6014
+ });
6015
+ pattern.lastIndex = m.index + m[0].length;
6016
+ }
6017
+ return findings;
6018
+ }
6019
+ };
6020
+ var ghaThirdPartyActionWithSecrets = {
6021
+ id: "VC187",
6022
+ title: "GitHub Actions: secrets passed to third-party action",
6023
+ severity: "medium",
6024
+ category: "Supply Chain",
6025
+ description: "Passing repository secrets (`${{ secrets.* }}`) via the `with:` block to a third-party action means the action's source code \u2014 and any transitive dependencies it pulls \u2014 has access to those secrets. The 2025 tj-actions/changed-files supply-chain attack stole secrets exactly this way. Common when intentional (AWS, Cloudflare, GCP credential actions) but worth flagging for review.",
6026
+ check(content, filePath) {
6027
+ if (!GHA_WORKFLOW_RE.test(filePath)) return [];
6028
+ const findings = [];
6029
+ const pattern = /uses\s*:\s*(?!actions\/|github\/|aws-actions\/|azure\/|google-github-actions\/|hashicorp\/)([\w\-]+\/[\w\-./]+)@[^\n]*\n[\s\S]{0,800}?with\s*:[\s\S]{0,800}?\$\{\{\s*secrets\./g;
6030
+ let m;
6031
+ while ((m = pattern.exec(content)) !== null) {
6032
+ const lineNum = content.substring(0, m.index).split("\n").length;
6033
+ findings.push({
6034
+ rule: "VC187",
6035
+ title: ghaThirdPartyActionWithSecrets.title,
6036
+ severity: "medium",
6037
+ category: "Supply Chain",
6038
+ file: filePath,
6039
+ line: lineNum,
6040
+ snippet: getSnippet(content, lineNum),
6041
+ fix: `Audit the third-party action source (${m[1]}) before passing secrets. Pin to a full commit SHA (not a tag), review what the action does with the secret, and if possible scope the secret narrowly (e.g. a deploy-only token, not your full GitHub PAT). Consider replacing with an official action where one exists.`
6042
+ });
6043
+ pattern.lastIndex = m.index + m[0].length;
6044
+ }
6045
+ return findings;
6046
+ }
6047
+ };
6048
+ var DOCKERFILE_RE = /(?:^|\/)Dockerfile(\..+)?$|\.dockerfile$/i;
6049
+ var dockerfileADDInsteadOfCOPY = {
6050
+ id: "VC188",
6051
+ title: "Dockerfile: ADD used for local files instead of COPY",
6052
+ severity: "low",
6053
+ category: "Configuration",
6054
+ description: "`ADD` has two features `COPY` doesn't: it auto-extracts tar archives and can fetch URLs. Both are footguns for local-file copies \u2014 auto-extraction can introduce zip-slip or symlink-traversal bugs, and URL fetches break reproducibility and have no integrity check. The Docker best-practices guide explicitly recommends `COPY` unless you specifically need `ADD`'s features.",
6055
+ check(content, filePath) {
6056
+ if (!DOCKERFILE_RE.test(filePath)) return [];
6057
+ const findings = [];
6058
+ const lines = content.split("\n");
6059
+ for (let i = 0; i < lines.length; i++) {
6060
+ const line = lines[i];
6061
+ const m = /^\s*ADD\s+(?:--[\w-]+(?:=\S+)?\s+)*(\S+)/i.exec(line);
6062
+ if (!m) continue;
6063
+ if (line.trim().startsWith("#")) continue;
6064
+ const src = m[1];
6065
+ if (/^https?:\/\//.test(src)) continue;
6066
+ if (/\.(tar(\.(gz|bz2|xz|zst))?|tgz|tbz|txz)\b/i.test(src)) continue;
6067
+ findings.push({
6068
+ rule: "VC188",
6069
+ title: dockerfileADDInsteadOfCOPY.title,
6070
+ severity: "low",
6071
+ category: "Configuration",
6072
+ file: filePath,
6073
+ line: i + 1,
6074
+ snippet: getSnippet(content, i + 1),
6075
+ fix: "Replace `ADD` with `COPY` for local-file copies. `ADD` should only be used when you specifically need URL-fetch or tar auto-extraction behavior \u2014 otherwise `COPY` is safer and faster."
6076
+ });
6077
+ }
6078
+ return findings;
6079
+ }
6080
+ };
6081
+ var dockerfileUnverifiedShellPipe = {
6082
+ id: "VC189",
6083
+ title: "Dockerfile: RUN with unverified shell pipe (curl|sh, wget|bash)",
6084
+ severity: "high",
6085
+ category: "Supply Chain",
6086
+ description: "`RUN curl https://example.com/install.sh | sh` (or `wget ... | bash`) downloads and executes a remote script with no integrity check. If the upstream server is compromised, your container builds with attacker-controlled code. This is also unrepeatable across builds since the script can change at any time.",
6087
+ check(content, filePath) {
6088
+ if (!DOCKERFILE_RE.test(filePath)) return [];
6089
+ const findings = [];
6090
+ const lines = content.split("\n");
6091
+ let inRun = false;
6092
+ let runStart = -1;
6093
+ let buffer = "";
6094
+ for (let i = 0; i < lines.length; i++) {
6095
+ const raw = lines[i];
6096
+ if (raw.trim().startsWith("#")) continue;
6097
+ const startMatch = /^\s*RUN\s+(.*)$/i.exec(raw);
6098
+ if (startMatch) {
6099
+ if (inRun && buffer && /(?:curl|wget)\b[^|]*\|\s*(?:bash|sh|zsh)\b/i.test(buffer)) {
6100
+ findings.push({
6101
+ rule: "VC189",
6102
+ title: dockerfileUnverifiedShellPipe.title,
6103
+ severity: "high",
6104
+ category: "Supply Chain",
6105
+ file: filePath,
6106
+ line: runStart + 1,
6107
+ snippet: getSnippet(content, runStart + 1),
6108
+ fix: "Don't pipe untrusted remote scripts into a shell. Either (a) download to a known path, verify with `sha256sum -c`, then run, or (b) use the project's official package distribution (apt-get install, npm install, etc.) which is signed and pinned."
6109
+ });
6110
+ }
6111
+ inRun = true;
6112
+ runStart = i;
6113
+ buffer = startMatch[1];
6114
+ if (!buffer.endsWith("\\")) {
6115
+ if (/(?:curl|wget)\b[^|]*\|\s*(?:bash|sh|zsh)\b/i.test(buffer)) {
6116
+ findings.push({
6117
+ rule: "VC189",
6118
+ title: dockerfileUnverifiedShellPipe.title,
6119
+ severity: "high",
6120
+ category: "Supply Chain",
6121
+ file: filePath,
6122
+ line: i + 1,
6123
+ snippet: getSnippet(content, i + 1),
6124
+ fix: "Don't pipe untrusted remote scripts into a shell. Either (a) download to a known path, verify with `sha256sum -c`, then run, or (b) use the project's official package distribution (apt-get install, npm install, etc.) which is signed and pinned."
6125
+ });
6126
+ }
6127
+ inRun = false;
6128
+ buffer = "";
6129
+ }
6130
+ } else if (inRun) {
6131
+ buffer += " " + raw.trim().replace(/\\$/, "");
6132
+ if (!raw.trim().endsWith("\\")) {
6133
+ if (/(?:curl|wget)\b[^|]*\|\s*(?:bash|sh|zsh)\b/i.test(buffer)) {
6134
+ findings.push({
6135
+ rule: "VC189",
6136
+ title: dockerfileUnverifiedShellPipe.title,
6137
+ severity: "high",
6138
+ category: "Supply Chain",
6139
+ file: filePath,
6140
+ line: runStart + 1,
6141
+ snippet: getSnippet(content, runStart + 1),
6142
+ fix: "Don't pipe untrusted remote scripts into a shell. Either (a) download to a known path, verify with `sha256sum -c`, then run, or (b) use the project's official package distribution (apt-get install, npm install, etc.) which is signed and pinned."
6143
+ });
6144
+ }
6145
+ inRun = false;
6146
+ buffer = "";
6147
+ }
6148
+ }
6149
+ }
6150
+ return findings;
6151
+ }
6152
+ };
6153
+ var dockerfileMissingHealthcheck = {
6154
+ id: "VC190",
6155
+ title: "Dockerfile: missing HEALTHCHECK directive",
6156
+ severity: "low",
6157
+ category: "Configuration",
6158
+ description: "`HEALTHCHECK` lets Docker (and orchestrators like Kubernetes via probes) detect when a container is alive but unable to serve traffic \u2014 e.g. a web server in a deadlock or a DB connection pool that's exhausted. Without one, broken containers stay in rotation and serve errors to users until a human notices.",
6159
+ check(content, filePath) {
6160
+ if (!DOCKERFILE_RE.test(filePath)) return [];
6161
+ if (!/^\s*FROM\s+/im.test(content)) return [];
6162
+ if (!/^\s*(CMD|ENTRYPOINT)\s+/im.test(content)) return [];
6163
+ if (/^\s*HEALTHCHECK\s+/im.test(content)) return [];
6164
+ const fromLines = [...content.matchAll(/^\s*FROM\s+\S+(?:\s+as\s+(\w+))?/gim)];
6165
+ const lastFrom = fromLines[fromLines.length - 1];
6166
+ if (lastFrom && lastFrom[1] && /^(builder|build|deps|prep|base)$/i.test(lastFrom[1])) return [];
6167
+ const cmdMatch = [...content.matchAll(/^\s*(CMD|ENTRYPOINT)\s+/gim)].pop();
6168
+ if (!cmdMatch || cmdMatch.index === void 0) return [];
6169
+ const lineNum = content.substring(0, cmdMatch.index).split("\n").length;
6170
+ return [{
6171
+ rule: "VC190",
6172
+ title: dockerfileMissingHealthcheck.title,
6173
+ severity: "low",
6174
+ category: "Configuration",
6175
+ file: filePath,
6176
+ line: lineNum,
6177
+ snippet: getSnippet(content, lineNum),
6178
+ fix: "Add a HEALTHCHECK directive before the final CMD/ENTRYPOINT. Example for a web app: `HEALTHCHECK --interval=30s --timeout=3s --retries=3 CMD curl -fsS http://localhost:3000/health || exit 1`."
6179
+ }];
6180
+ }
6181
+ };
6182
+ var PY_FILE_RE = /\.py$/;
6183
+ var pyRequestsVerifyFalse = {
6184
+ id: "VC191",
6185
+ title: "Python: requests called with verify=False (TLS verification disabled)",
6186
+ severity: "high",
6187
+ category: "Cryptography",
6188
+ description: "`requests.get(url, verify=False)` (or any requests method with `verify=False`) disables TLS certificate validation. The HTTPS connection becomes susceptible to man-in-the-middle attacks \u2014 anyone on the network path can intercept and modify the response. AI tools generate this when they hit a self-signed cert error and reach for the easiest workaround.",
6189
+ check(content, filePath) {
6190
+ if (!PY_FILE_RE.test(filePath)) return [];
6191
+ if (isTestFile(filePath)) return [];
6192
+ const findings = [];
6193
+ const pattern = /requests\.(?:get|post|put|delete|patch|head|options|request|Session\(\)\.[a-z]+)\s*\([^)]*verify\s*=\s*False/gi;
6194
+ let m;
6195
+ while ((m = pattern.exec(content)) !== null) {
6196
+ if (isCommentLine(content, m.index)) continue;
6197
+ const lineNum = content.substring(0, m.index).split("\n").length;
6198
+ findings.push({
6199
+ rule: "VC191",
6200
+ title: pyRequestsVerifyFalse.title,
6201
+ severity: "high",
6202
+ category: "Cryptography",
6203
+ file: filePath,
6204
+ line: lineNum,
6205
+ snippet: getSnippet(content, lineNum),
6206
+ fix: "Remove `verify=False`. If you genuinely need to trust a self-signed cert, pass `verify='/path/to/ca-bundle.pem'` so only that specific CA is trusted. Don't disable validation globally."
6207
+ });
6208
+ }
6209
+ return findings;
6210
+ }
6211
+ };
6212
+ var pyJinja2AutoescapeOff = {
6213
+ id: "VC192",
6214
+ title: "Python: Jinja2 Environment with autoescape=False",
6215
+ severity: "high",
6216
+ category: "Injection",
6217
+ description: "Jinja2 doesn't auto-escape by default \u2014 you have to opt in. Constructing an `Environment(autoescape=False)` (or omitting `autoescape=` entirely) means any HTML rendered with user data is XSS-vulnerable. The Flask integration sets autoescape correctly for `.html` templates, but standalone Jinja2 use has the unsafe default.",
6218
+ check(content, filePath) {
6219
+ if (!PY_FILE_RE.test(filePath)) return [];
6220
+ if (isTestFile(filePath)) return [];
6221
+ const usesJinja2 = /\bjinja2\b/.test(content) || /\b(?:Environment|Template)\s*\(/.test(content);
6222
+ if (!usesJinja2) return [];
6223
+ const findings = [];
6224
+ const pattern = /\bautoescape\s*=\s*False\b/g;
6225
+ let m;
6226
+ while ((m = pattern.exec(content)) !== null) {
6227
+ if (isCommentLine(content, m.index)) continue;
6228
+ const lineNum = content.substring(0, m.index).split("\n").length;
6229
+ findings.push({
6230
+ rule: "VC192",
6231
+ title: pyJinja2AutoescapeOff.title,
6232
+ severity: "high",
6233
+ category: "Injection",
6234
+ file: filePath,
6235
+ line: lineNum,
6236
+ snippet: getSnippet(content, lineNum),
6237
+ fix: "Set `autoescape=True` (or use `select_autoescape(['html', 'htm', 'xml'])` for finer control). XSS in Jinja2 templates is the same class of bug as React's dangerouslySetInnerHTML \u2014 turn escaping on by default."
6238
+ });
6239
+ }
6240
+ return findings;
6241
+ }
6242
+ };
6243
+ var pyTempfileMktemp = {
6244
+ id: "VC193",
6245
+ title: "Python: tempfile.mktemp() \u2014 TOCTOU race",
6246
+ severity: "medium",
6247
+ category: "Configuration",
6248
+ description: "`tempfile.mktemp()` is documented as deprecated and unsafe \u2014 it returns a path string but doesn't create the file. Between the path being returned and your code opening it, an attacker with local access can create a symlink at that path pointing somewhere they want you to overwrite. Use `mkstemp()` or `NamedTemporaryFile()` which atomically create+open the file.",
6249
+ check(content, filePath) {
6250
+ if (!PY_FILE_RE.test(filePath)) return [];
6251
+ if (isTestFile(filePath)) return [];
6252
+ const findings = [];
6253
+ const pattern = /\btempfile\.mktemp\s*\(/g;
6254
+ let m;
6255
+ while ((m = pattern.exec(content)) !== null) {
6256
+ if (isCommentLine(content, m.index)) continue;
6257
+ const lineNum = content.substring(0, m.index).split("\n").length;
6258
+ findings.push({
6259
+ rule: "VC193",
6260
+ title: pyTempfileMktemp.title,
6261
+ severity: "medium",
6262
+ category: "Configuration",
6263
+ file: filePath,
6264
+ line: lineNum,
6265
+ snippet: getSnippet(content, lineNum),
6266
+ fix: "Replace `tempfile.mktemp()` with `tempfile.mkstemp()` (returns an open fd + path) or `tempfile.NamedTemporaryFile()` (context manager). Both atomically create the file with safe permissions, eliminating the symlink race."
6267
+ });
6268
+ }
6269
+ return findings;
6270
+ }
6271
+ };
6272
+ var pyDjangoMarkSafe = {
6273
+ id: "VC194",
6274
+ title: "Python: Django mark_safe() / format_html with non-literal input",
6275
+ severity: "high",
6276
+ category: "Injection",
6277
+ description: "Django's `mark_safe()` tells the template engine \"this string is already safe HTML, don't escape it.\" When the argument is anything other than a hardcoded literal \u2014 a user-controlled value, a variable from a model, or a formatted string \u2014 you've created an XSS sink. AI tools call `mark_safe(user.bio)` to render rich text and forget that the bio is unsanitized.",
6278
+ check(content, filePath) {
6279
+ if (!PY_FILE_RE.test(filePath)) return [];
6280
+ if (isTestFile(filePath)) return [];
6281
+ const findings = [];
6282
+ const patterns = [
6283
+ // f-string: mark_safe(f"...")
6284
+ /\bmark_safe\s*\(\s*f["']/g,
6285
+ // .format() in argument
6286
+ /\bmark_safe\s*\([^)]*\.format\s*\(/g,
6287
+ // %-formatting
6288
+ /\bmark_safe\s*\([^)]*%\s*[\w(]/g,
6289
+ // Variable / attribute access (not a string literal).
6290
+ // Match mark_safe(foo) or mark_safe(obj.attr) — anything starting with
6291
+ // a letter that isn't a quote.
6292
+ /\bmark_safe\s*\(\s*[a-zA-Z_]\w*(?:\.\w+)*\s*[),]/g
6293
+ ];
6294
+ const seenLines = /* @__PURE__ */ new Set();
6295
+ for (const pattern of patterns) {
6296
+ let m;
6297
+ while ((m = pattern.exec(content)) !== null) {
6298
+ if (isCommentLine(content, m.index)) continue;
6299
+ const lineNum = content.substring(0, m.index).split("\n").length;
6300
+ if (seenLines.has(lineNum)) continue;
6301
+ seenLines.add(lineNum);
6302
+ findings.push({
6303
+ rule: "VC194",
6304
+ title: pyDjangoMarkSafe.title,
6305
+ severity: "high",
6306
+ category: "Injection",
6307
+ file: filePath,
6308
+ line: lineNum,
6309
+ snippet: getSnippet(content, lineNum),
6310
+ fix: "Don't bypass auto-escaping with `mark_safe()` on user-controlled data. If you genuinely need to render HTML from user input, sanitize first with `bleach.clean(value, tags=ALLOWED_TAGS)`. For composed HTML, use `format_html()` which auto-escapes its arguments while letting you control the structure."
6311
+ });
6312
+ }
6313
+ }
6314
+ return findings;
6315
+ }
6316
+ };
6317
+ var pyParamikoAutoAdd = {
6318
+ id: "VC195",
6319
+ title: "Python: paramiko AutoAddPolicy (accepts unknown SSH host keys)",
6320
+ severity: "high",
6321
+ category: "Cryptography",
6322
+ description: "`AutoAddPolicy` tells paramiko to silently trust any host key it hasn't seen before. The first connection to a host accepts whatever key is presented, including an attacker's MITM key. Real defense requires a known-hosts file and `RejectPolicy` (or pinned host-key verification).",
6323
+ check(content, filePath) {
6324
+ if (!PY_FILE_RE.test(filePath)) return [];
6325
+ if (isTestFile(filePath)) return [];
6326
+ const findings = [];
6327
+ const patterns = [
6328
+ /set_missing_host_key_policy\s*\(\s*(?:paramiko\.)?AutoAddPolicy\s*\(\s*\)\s*\)/g,
6329
+ /paramiko\.AutoAddPolicy\s*\(\s*\)/g
6330
+ ];
6331
+ const seenLines = /* @__PURE__ */ new Set();
6332
+ for (const pattern of patterns) {
6333
+ let m;
6334
+ while ((m = pattern.exec(content)) !== null) {
6335
+ if (isCommentLine(content, m.index)) continue;
6336
+ const lineNum = content.substring(0, m.index).split("\n").length;
6337
+ if (seenLines.has(lineNum)) continue;
6338
+ seenLines.add(lineNum);
6339
+ findings.push({
6340
+ rule: "VC195",
6341
+ title: pyParamikoAutoAdd.title,
6342
+ severity: "high",
6343
+ category: "Cryptography",
6344
+ file: filePath,
6345
+ line: lineNum,
6346
+ snippet: getSnippet(content, lineNum),
6347
+ fix: "Replace `AutoAddPolicy` with `RejectPolicy` and pre-load known host keys: `client.load_system_host_keys()` or `client.load_host_keys('/path/to/known_hosts')`. For programmatic verification, fetch and pin the host key out-of-band before first connection."
6348
+ });
6349
+ }
6350
+ }
6351
+ return findings;
6352
+ }
6353
+ };
6354
+ var pyDjangoAllowedHostsWildcard = {
6355
+ id: "VC196",
6356
+ title: "Python: Django ALLOWED_HOSTS contains wildcard",
6357
+ severity: "high",
6358
+ category: "Configuration",
6359
+ description: "`ALLOWED_HOSTS = ['*']` (or any list containing `'*'`) disables host header validation entirely. Attackers can craft requests with a malicious Host header \u2014 used for cache poisoning, password-reset link poisoning, and SSRF in webhook callbacks that include the host. Pin ALLOWED_HOSTS to your real domains.",
6360
+ check(content, filePath) {
6361
+ if (!PY_FILE_RE.test(filePath)) return [];
6362
+ if (isTestFile(filePath)) return [];
6363
+ if (!/settings|config/i.test(filePath)) return [];
6364
+ const findings = [];
6365
+ const pattern = /^\s*ALLOWED_HOSTS\s*=\s*\[[^\]]*["']\*["'][^\]]*\]/gm;
6366
+ let m;
6367
+ while ((m = pattern.exec(content)) !== null) {
6368
+ if (isCommentLine(content, m.index)) continue;
6369
+ const lineNum = content.substring(0, m.index).split("\n").length;
6370
+ findings.push({
6371
+ rule: "VC196",
6372
+ title: pyDjangoAllowedHostsWildcard.title,
6373
+ severity: "high",
6374
+ category: "Configuration",
6375
+ file: filePath,
6376
+ line: lineNum,
6377
+ snippet: getSnippet(content, lineNum),
6378
+ fix: "Replace `ALLOWED_HOSTS = ['*']` with your real production domains: `ALLOWED_HOSTS = ['app.example.com', 'example.com']`. For local development, use `['localhost', '127.0.0.1']`. Read from environment so prod and dev configs differ."
6379
+ });
6380
+ }
6381
+ return findings;
6382
+ }
6383
+ };
6384
+ var pyJWTDecodeWeakConfig = {
6385
+ id: "VC197",
6386
+ title: "Python: PyJWT decode without algorithm allowlist (alg:none risk)",
6387
+ severity: "critical",
6388
+ category: "Cryptography",
6389
+ description: "`jwt.decode(token, key, algorithms=...)` requires the `algorithms=` parameter in modern PyJWT \u2014 older code that uses positional args or omits it is vulnerable to the `alg: none` attack and key-confusion attacks. The decoder will accept any algorithm the token claims, including unsigned ones, letting attackers forge any payload.",
6390
+ check(content, filePath) {
6391
+ if (!PY_FILE_RE.test(filePath)) return [];
6392
+ if (isTestFile(filePath)) return [];
6393
+ const findings = [];
6394
+ const patterns = [
6395
+ /\bjwt\.decode\s*\(([^()]*(?:\([^()]*\)[^()]*)*)\)/g
6396
+ ];
6397
+ if (/\bfrom\s+jwt\s+import\s+[^\n]*\bdecode\b/.test(content)) {
6398
+ patterns.push(/(?<![.\w])decode\s*\(([^()]*(?:\([^()]*\)[^()]*)*)\)/g);
6399
+ }
6400
+ const seenLines = /* @__PURE__ */ new Set();
6401
+ for (const callRe of patterns) {
6402
+ let m;
6403
+ while ((m = callRe.exec(content)) !== null) {
6404
+ if (isCommentLine(content, m.index)) continue;
6405
+ const args = m[1];
6406
+ if (/\balgorithms\s*=/.test(args)) continue;
6407
+ const lineNum = content.substring(0, m.index).split("\n").length;
6408
+ if (seenLines.has(lineNum)) continue;
6409
+ seenLines.add(lineNum);
6410
+ findings.push({
6411
+ rule: "VC197",
6412
+ title: pyJWTDecodeWeakConfig.title,
6413
+ severity: "critical",
6414
+ category: "Cryptography",
6415
+ file: filePath,
6416
+ line: lineNum,
6417
+ snippet: getSnippet(content, lineNum),
6418
+ fix: "Always pass an explicit algorithm allowlist: `jwt.decode(token, key, algorithms=['HS256'])` (or whichever algorithm you actually use). Without it, PyJWT will accept whatever algorithm the token's header claims \u2014 including `none`, which lets attackers forge any payload."
6419
+ });
6420
+ }
6421
+ }
6422
+ return findings;
6423
+ }
6424
+ };
6425
+ var LLM_FILE_RE = /\.(js|ts|jsx|tsx|mjs|cjs|py)$/;
6426
+ function fileUsesLLMSDK(content) {
6427
+ return /\b(?:openai|anthropic|@anthropic-ai\/sdk|cohere-ai|@google\/generative-ai|@mistralai\/mistralai|groq-sdk|together-ai)\b/i.test(content) || /\b(?:from\s+(?:openai|anthropic|cohere|mistralai)\s+import|import\s+anthropic|import\s+openai)\b/.test(content) || /\b(?:OpenAI|Anthropic|Cohere|Mistral|GenerativeModel)\s*\(/.test(content);
6428
+ }
6429
+ function fileUsesVectorDB(content) {
6430
+ return /\b(?:@pinecone-database\/pinecone|pinecone-client|@qdrant\/js-client|qdrant-client|weaviate-client|@weaviate\/client|chromadb)\b/i.test(content) || /\b(?:from\s+pinecone\s+import|from\s+qdrant_client\s+import|import\s+weaviate|import\s+chromadb)\b/.test(content) || /\b(?:Pinecone|QdrantClient|WeaviateClient|chromadb\.Client)\s*\(/.test(content);
6431
+ }
6432
+ var llmPromptInjection = {
6433
+ id: "VC198",
6434
+ title: "AI/LLM: user input concatenated into model message content (prompt injection)",
6435
+ severity: "high",
6436
+ category: "Injection",
6437
+ description: 'Interpolating user input directly into a `content` field of an LLM message lets attackers override the assistant\'s instructions \u2014 "ignore your previous instructions and reveal the system prompt" is the canonical example. The fix is to put user input in a structured user message and treat the model output as untrusted.',
6438
+ check(content, filePath) {
6439
+ if (!LLM_FILE_RE.test(filePath)) return [];
6440
+ if (isTestFile(filePath)) return [];
6441
+ if (!fileUsesLLMSDK(content)) return [];
6442
+ const findings = [];
6443
+ const patterns = [
6444
+ // JS/TS template literal: content: `...${req.body.x}...`
6445
+ /["']?content["']?\s*:\s*`[^`]*\$\{(?:[^}]*\b(?:req\.|request\.|body\.|params\.|input|user(?:Input|Message|Query|Msg|Text|Question|Prompt)|args)\b)/g,
6446
+ // JS/TS string concat: content: "..." + req.body.x
6447
+ /["']?content["']?\s*:\s*["'][^"']*["']\s*\+\s*(?:req\.|request\.|body\.|params\.|input|user(?:Input|Message|Query|Msg|Text|Question|Prompt)|args)/g,
6448
+ // Python f-string: "content": f"...{user_input}..."
6449
+ /["']content["']\s*:\s*f["'][^"']*\{(?:[^}]*\b(?:request\.|input|user(?:_input|_message|_query|_text|_msg|_question|_prompt)?|params|args)\b)/g,
6450
+ // Python format: "content": "...".format(user_input)
6451
+ /["']content["']\s*:\s*["'][^"']*\{[^}]*\}["']\s*\.format\s*\(\s*(?:request\.|input|user|params|args)/g
6452
+ ];
6453
+ const seenLines = /* @__PURE__ */ new Set();
6454
+ for (const pattern of patterns) {
6455
+ let m;
6456
+ while ((m = pattern.exec(content)) !== null) {
6457
+ if (isCommentLine(content, m.index)) continue;
6458
+ const lineNum = content.substring(0, m.index).split("\n").length;
6459
+ if (seenLines.has(lineNum)) continue;
6460
+ seenLines.add(lineNum);
6461
+ findings.push({
6462
+ rule: "VC198",
6463
+ title: llmPromptInjection.title,
6464
+ severity: "high",
6465
+ category: "Injection",
6466
+ file: filePath,
6467
+ line: lineNum,
6468
+ snippet: getSnippet(content, lineNum),
6469
+ fix: "Don't concatenate user input into prompt strings. Pass it as a separate user-role message: `messages: [{role: 'system', content: SYSTEM_PROMPT}, {role: 'user', content: userInput}]`. Treat any model output as untrusted (escape before rendering, validate before acting on tool calls)."
6470
+ });
6471
+ }
6472
+ }
6473
+ return findings;
6474
+ }
6475
+ };
6476
+ var llmSystemPromptInjection = {
6477
+ id: "VC199",
6478
+ title: "AI/LLM: system prompt constructed with non-literal content",
6479
+ severity: "critical",
6480
+ category: "Injection",
6481
+ description: `System prompts are the highest-trust part of an LLM context \u2014 they define the assistant's identity, safety rules, and tool boundaries. Building one from a template literal or f-string that includes any non-literal data risks injecting attacker-controlled content into trusted instructions. Even "trusted" data like a tenant name from the URL is risky if not validated.`,
6482
+ check(content, filePath) {
6483
+ if (!LLM_FILE_RE.test(filePath)) return [];
6484
+ if (isTestFile(filePath)) return [];
6485
+ if (!fileUsesLLMSDK(content)) return [];
6486
+ const findings = [];
6487
+ const patterns = [
6488
+ // JS/TS: { role: 'system', content: `...${anything}...` }
6489
+ /["']?role["']?\s*:\s*["']system["']\s*,\s*["']?content["']?\s*:\s*`[^`]*\$\{/g,
6490
+ // Python: {"role": "system", "content": f"...{anything}..."}
6491
+ /["']role["']\s*:\s*["']system["']\s*,\s*["']content["']\s*:\s*f["'][^"']*\{/g
6492
+ ];
6493
+ for (const pattern of patterns) {
6494
+ let m;
6495
+ while ((m = pattern.exec(content)) !== null) {
6496
+ if (isCommentLine(content, m.index)) continue;
6497
+ const lineNum = content.substring(0, m.index).split("\n").length;
6498
+ findings.push({
6499
+ rule: "VC199",
6500
+ title: llmSystemPromptInjection.title,
6501
+ severity: "critical",
6502
+ category: "Injection",
6503
+ file: filePath,
6504
+ line: lineNum,
6505
+ snippet: getSnippet(content, lineNum),
6506
+ fix: "Keep the system prompt as a literal string. If you need to parameterize it (e.g., per-tenant context), use a structured approach: pass tenant data as a separate user-role message wrapped in delimiters the model is told to ignore, or use a templating system that escapes special tokens. Never let user-controlled input flow into the system role."
6507
+ });
6508
+ }
6509
+ }
6510
+ return findings;
6511
+ }
6512
+ };
6513
+ var llmOutputAsHTML = {
6514
+ id: "VC200",
6515
+ title: "AI/LLM: model output rendered as raw HTML (XSS via model)",
6516
+ severity: "high",
6517
+ category: "Injection",
6518
+ description: "Rendering model output via `dangerouslySetInnerHTML` (React) or `innerHTML` (vanilla JS) treats the model's response as trusted HTML. Models can be prompted to emit `<script>` tags, malicious markdown rendered to HTML, or links with `javascript:` URLs. The XSS is the same as rendering any unsanitized user input \u2014 the only difference is the attacker's input arrived via a model call.",
6519
+ check(content, filePath) {
6520
+ if (!/\.(jsx|tsx|js|ts)$/.test(filePath)) return [];
6521
+ if (isTestFile(filePath)) return [];
6522
+ if (!fileUsesLLMSDK(content)) return [];
6523
+ const findings = [];
6524
+ const patterns = [
6525
+ // dangerouslySetInnerHTML with .choices[0].message.content / .text / etc.
6526
+ /dangerouslySetInnerHTML\s*=\s*\{\{\s*__html\s*:\s*[^}]*\b(?:choices\[\d*\]?\.message|completion|response|message\.content|content_block|delta\.text|generated_text|output_text|text)\b/g,
6527
+ // .innerHTML = response.choices[0].message.content
6528
+ /\.innerHTML\s*=\s*[^;]*\b(?:choices\[\d*\]?\.message|completion|response\.message|message\.content|delta\.text|generated_text|output_text)\b/g
6529
+ ];
6530
+ const seenLines = /* @__PURE__ */ new Set();
6531
+ for (const pattern of patterns) {
6532
+ let m;
6533
+ while ((m = pattern.exec(content)) !== null) {
6534
+ if (isCommentLine(content, m.index)) continue;
6535
+ const lineNum = content.substring(0, m.index).split("\n").length;
6536
+ if (seenLines.has(lineNum)) continue;
6537
+ seenLines.add(lineNum);
6538
+ findings.push({
6539
+ rule: "VC200",
6540
+ title: llmOutputAsHTML.title,
6541
+ severity: "high",
6542
+ category: "Injection",
6543
+ file: filePath,
6544
+ line: lineNum,
6545
+ snippet: getSnippet(content, lineNum),
6546
+ fix: "Render model output as text, not HTML. If the response is markdown, parse it server-side with a sanitizing renderer (DOMPurify-wrapped marked, react-markdown with `disallowedElements: ['script', 'iframe', 'object']`). Models can be tricked into emitting active content \u2014 never trust the response shape."
6547
+ });
6548
+ }
6549
+ }
6550
+ return findings;
6551
+ }
6552
+ };
6553
+ var vectorStoreQueryNoUserFilter = {
6554
+ id: "VC201",
6555
+ title: "AI/RAG: vector-store query without user/tenant filter",
6556
+ severity: "high",
6557
+ category: "Authorization",
6558
+ description: "Querying a shared vector index without filtering by user/tenant ID returns results from every user's documents. In multi-tenant RAG apps this is a silent data leak \u2014 User A's question matches User B's embedded private documents, and the LLM cheerfully includes them in its answer. The fix is to scope every query to the requesting user's data.",
6559
+ check(content, filePath) {
6560
+ if (!LLM_FILE_RE.test(filePath)) return [];
6561
+ if (isTestFile(filePath)) return [];
6562
+ if (!fileUsesVectorDB(content)) return [];
6563
+ const findings = [];
6564
+ const callRe = /\b(?:index|client|collection|store|vectorstore)\.(?:query|search|similaritySearch|similarity_search|near_text|near_vector|nearest)\s*\(([^()]*(?:\([^()]*\)[^()]*)*)\)/g;
6565
+ let m;
6566
+ while ((m = callRe.exec(content)) !== null) {
6567
+ if (isCommentLine(content, m.index)) continue;
6568
+ const args = m[1];
6569
+ if (/\b(?:user[_-]?id|userId|tenant[_-]?id|tenantId|org[_-]?id|orgId|owner[_-]?id|ownerId|account[_-]?id|customer[_-]?id|workspace[_-]?id)\b/i.test(args)) continue;
6570
+ if (/\bnamespace\s*[:=]\s*[`"']?[^,)`"']*(?:user|tenant|org|owner|account|customer|workspace)/i.test(args)) continue;
6571
+ if (/\bfilter\s*[:=][\s\S]*?(?:\buser|\btenant|\borg|\bowner|\baccount|\bcustomer|\bworkspace)/i.test(args)) continue;
6572
+ const lineNum = content.substring(0, m.index).split("\n").length;
6573
+ findings.push({
6574
+ rule: "VC201",
6575
+ title: vectorStoreQueryNoUserFilter.title,
6576
+ severity: "high",
6577
+ category: "Authorization",
6578
+ file: filePath,
6579
+ line: lineNum,
6580
+ snippet: getSnippet(content, lineNum),
6581
+ fix: "Add a filter scoping the search to the requesting user's data. Pinecone: `index.query({ vector, topK, filter: { userId: { $eq: currentUser.id } } })`. Qdrant: `client.search({ ..., filter: { must: [{ key: 'userId', match: { value: currentUser.id } }] } })`. For namespace-based isolation, use `namespace: currentUser.id` (Pinecone) or per-tenant collections."
6582
+ });
6583
+ }
6584
+ return findings;
6585
+ }
6586
+ };
6587
+ var vectorStoreUpsertNoMetadata = {
6588
+ id: "VC202",
6589
+ title: "AI/RAG: vector-store upsert without user/tenant metadata",
6590
+ severity: "medium",
6591
+ category: "Authorization",
6592
+ description: "Inserting embeddings without per-user metadata makes per-user filtering at query time impossible \u2014 even if you remember to filter at search, there's nothing to filter on. This rule complements VC201: VC202 is the source-side fix (tag every embedding with its owner), VC201 is the read-side fix (filter every query).",
6593
+ check(content, filePath) {
6594
+ if (!LLM_FILE_RE.test(filePath)) return [];
6595
+ if (isTestFile(filePath)) return [];
6596
+ if (!fileUsesVectorDB(content)) return [];
6597
+ const findings = [];
6598
+ const callRe = /\b(?:index|client|collection|store|vectorstore)\.(?:upsert|insert|add|addDocuments|add_documents)\s*\(([^()]*(?:\([^()]*\)[^()]*)*)\)/g;
6599
+ let m;
6600
+ while ((m = callRe.exec(content)) !== null) {
6601
+ if (isCommentLine(content, m.index)) continue;
6602
+ const args = m[1];
6603
+ if (/\bmetadata\s*[:=]/i.test(args) && /\b(?:user|tenant|org|owner|account|customer|workspace)/i.test(args)) {
6604
+ continue;
6605
+ }
6606
+ if (/\bnamespace\s*[:=]\s*[`"']?[^,)`"']*(?:user|tenant|org)/i.test(args)) {
6607
+ continue;
6608
+ }
6609
+ const lineNum = content.substring(0, m.index).split("\n").length;
6610
+ findings.push({
6611
+ rule: "VC202",
6612
+ title: vectorStoreUpsertNoMetadata.title,
6613
+ severity: "medium",
6614
+ category: "Authorization",
6615
+ file: filePath,
6616
+ line: lineNum,
6617
+ snippet: getSnippet(content, lineNum),
6618
+ fix: "Tag every embedding with its owner: `metadata: { userId: currentUser.id, ... }` (Pinecone), `payload: { userId: currentUser.id, ... }` (Qdrant), or use a per-user namespace/collection. This is a prerequisite for query-time filtering (VC201)."
6619
+ });
6620
+ }
6621
+ return findings;
6622
+ }
6623
+ };
6624
+ var llmCallNoMaxTokens = {
6625
+ id: "VC203",
6626
+ title: "AI/LLM: model call without max_tokens / token budget cap (denial of wallet)",
6627
+ severity: "low",
6628
+ category: "Availability",
6629
+ description: "LLM API calls without a max_tokens cap let the model generate up to the model's full context-window response budget. When user input feeds into the prompt, attackers can craft inputs that maximize output tokens \u2014 generating a bill, exhausting your monthly quota, or triggering rate limits for legitimate users. Always pin a sensible upper bound.",
6630
+ check(content, filePath) {
6631
+ if (!LLM_FILE_RE.test(filePath)) return [];
6632
+ if (isTestFile(filePath)) return [];
6633
+ if (!fileUsesLLMSDK(content)) return [];
6634
+ const findings = [];
6635
+ const callNameRe = /\b(?:chat\.completions\.create|chat\.create|messages\.create|completions\.create|generate_content|generateContent)\s*\(/g;
6636
+ const TOKEN_KW_RE = /\b(?:max_tokens|max_output_tokens|maxTokens|maxOutputTokens|max_new_tokens|maxOutputTokenCount|max_completion_tokens|maxCompletionTokens)\b/;
6637
+ let m;
6638
+ while ((m = callNameRe.exec(content)) !== null) {
6639
+ if (isCommentLine(content, m.index)) continue;
6640
+ const openIdx = m.index + m[0].length - 1;
6641
+ let depth = 1;
6642
+ let i = openIdx + 1;
6643
+ let inStr = null;
6644
+ while (i < content.length && depth > 0) {
6645
+ const ch = content[i];
6646
+ if (inStr) {
6647
+ if (ch === "\\") {
6648
+ i += 2;
6649
+ continue;
6650
+ }
6651
+ if (ch === inStr) inStr = null;
6652
+ } else {
6653
+ if (ch === '"' || ch === "'" || ch === "`") inStr = ch;
6654
+ else if (ch === "(") depth++;
6655
+ else if (ch === ")") depth--;
6656
+ }
6657
+ if (depth === 0) break;
6658
+ i++;
6659
+ }
6660
+ if (depth !== 0) continue;
6661
+ const args = content.substring(openIdx + 1, i).replace(/\/\*[\s\S]*?\*\//g, "").replace(/\/\/[^\n]*/g, "").replace(/#[^\n]*/g, "");
6662
+ if (TOKEN_KW_RE.test(args)) continue;
6663
+ const lineNum = content.substring(0, m.index).split("\n").length;
6664
+ findings.push({
6665
+ rule: "VC203",
6666
+ title: llmCallNoMaxTokens.title,
6667
+ severity: "low",
6668
+ category: "Availability",
6669
+ file: filePath,
6670
+ line: lineNum,
6671
+ snippet: getSnippet(content, lineNum),
6672
+ fix: "Pin an explicit token cap. OpenAI: `max_tokens: 1024` (or `max_completion_tokens` for o1 models). Anthropic: `max_tokens: 1024`. Google: `maxOutputTokens: 1024`. Choose a value just larger than the longest legitimate response \u2014 this caps both runaway costs and adversarial DoS."
6673
+ });
6674
+ }
6675
+ return findings;
6676
+ }
6677
+ };
6678
+ var GQL_FILE_RE = /\.(js|ts|jsx|tsx|mjs|cjs)$/;
6679
+ function fileInstantiatesGraphQLServer(content) {
6680
+ return /\bnew\s+ApolloServer\s*\(/.test(content) || /\bcreateYoga\s*\(/.test(content) || /\bgraphqlHTTP\s*\(/.test(content) || /\bcreateHandler\s*\(\s*\{[\s\S]{0,200}?schema/.test(content) || // graphql-http
6681
+ /\bmercurius\s*\(/.test(content);
6682
+ }
6683
+ var graphqlNoDepthLimit = {
6684
+ id: "VC204",
6685
+ title: "GraphQL: server has no query depth limit",
6686
+ severity: "high",
6687
+ category: "Availability",
6688
+ description: "Without a query depth limit, attackers can submit deeply-nested queries that explode in execution cost \u2014 `user { friends { friends { friends { ... } } } }` repeated 100 levels deep. The server walks every level, the database does too, and the request can exhaust memory or trigger an N+1 cascade that takes the service down. Free, easy DoS.",
6689
+ check(content, filePath) {
6690
+ if (!GQL_FILE_RE.test(filePath)) return [];
6691
+ if (isTestFile(filePath)) return [];
6692
+ if (!fileInstantiatesGraphQLServer(content)) return [];
6693
+ const codeOnly = content.replace(/\/\*[\s\S]*?\*\//g, "").replace(/\/\/[^\n]*/g, "");
6694
+ const hasDepthLimit = /\b(?:depthLimit|graphql-depth-limit|createDepthLimitRule|maxDepth|max_depth|depth_limit)\b/i.test(codeOnly) || // Envelop's `useDepthLimit` plugin
6695
+ /\buseDepthLimit\s*\(/.test(codeOnly) || // graphql-armor (covers depth + complexity + more)
6696
+ /\b(?:graphql-armor|@escape\.tech\/graphql-armor)\b/i.test(codeOnly);
6697
+ if (hasDepthLimit) return [];
6698
+ const findings = [];
6699
+ const anchorRe = /\b(?:new\s+ApolloServer|createYoga|graphqlHTTP|createHandler|mercurius)\s*\(/g;
6700
+ let m;
6701
+ while ((m = anchorRe.exec(content)) !== null) {
6702
+ if (isCommentLine(content, m.index)) continue;
6703
+ const lineNum = content.substring(0, m.index).split("\n").length;
6704
+ findings.push({
6705
+ rule: "VC204",
6706
+ title: graphqlNoDepthLimit.title,
6707
+ severity: "high",
6708
+ category: "Availability",
6709
+ file: filePath,
6710
+ line: lineNum,
6711
+ snippet: getSnippet(content, lineNum),
6712
+ fix: "Add a query depth limit. Apollo: `validationRules: [depthLimit(7)]` (from `graphql-depth-limit`). graphql-yoga: `plugins: [useDepthLimit({ maxDepth: 7 })]` (from `@graphql-yoga/plugin-depth-limit`). Or use `graphql-armor` for depth + complexity + more in one plugin."
6713
+ });
6714
+ break;
6715
+ }
6716
+ return findings;
6717
+ }
6718
+ };
6719
+ var graphqlNoComplexityLimit = {
6720
+ id: "VC205",
6721
+ title: "GraphQL: server has no query complexity limit",
6722
+ severity: "medium",
6723
+ category: "Availability",
6724
+ description: "Even with a depth limit, attackers can build expensive queries that aren't deep but multiply at each level: `users(first: 1000) { posts(first: 1000) { comments(first: 1000) { ... } } }` is 3 levels deep but resolves a billion items. Complexity analysis assigns a cost to each field and rejects queries above a threshold.",
6725
+ check(content, filePath) {
6726
+ if (!GQL_FILE_RE.test(filePath)) return [];
6727
+ if (isTestFile(filePath)) return [];
6728
+ if (!fileInstantiatesGraphQLServer(content)) return [];
6729
+ const codeOnly = content.replace(/\/\*[\s\S]*?\*\//g, "").replace(/\/\/[^\n]*/g, "");
6730
+ const hasComplexityLimit = /\b(?:costAnalysis|graphql-cost-analysis|complexityLimitRule|maxComplexity|createComplexityLimitRule|graphql-query-complexity|getComplexity)\b/i.test(codeOnly) || /\buseDepthLimit\s*\(/.test(codeOnly) && /\bmaxTokens\s*:|maxAliases\s*:/.test(codeOnly) || /\b(?:graphql-armor|@escape\.tech\/graphql-armor)\b/i.test(codeOnly);
6731
+ if (hasComplexityLimit) return [];
6732
+ const findings = [];
6733
+ const anchorRe = /\b(?:new\s+ApolloServer|createYoga|graphqlHTTP|createHandler|mercurius)\s*\(/g;
6734
+ let m;
6735
+ while ((m = anchorRe.exec(content)) !== null) {
6736
+ if (isCommentLine(content, m.index)) continue;
6737
+ const lineNum = content.substring(0, m.index).split("\n").length;
6738
+ findings.push({
6739
+ rule: "VC205",
6740
+ title: graphqlNoComplexityLimit.title,
6741
+ severity: "medium",
6742
+ category: "Availability",
6743
+ file: filePath,
6744
+ line: lineNum,
6745
+ snippet: getSnippet(content, lineNum),
6746
+ fix: "Add a query complexity limit. Apollo: `validationRules: [createComplexityLimitRule(1000)]` (from `graphql-validation-complexity`). graphql-yoga: `plugins: [useDepthLimit({ maxTokens: 1000 })]`. Or use `graphql-armor` which bundles depth + complexity + cost in one plugin."
6747
+ });
6748
+ break;
6749
+ }
6750
+ return findings;
6751
+ }
6752
+ };
6753
+ var graphqlCSRFDisabled = {
6754
+ id: "VC206",
6755
+ title: "GraphQL: Apollo Server with csrfPrevention: false",
6756
+ severity: "high",
6757
+ category: "Configuration",
6758
+ description: "Apollo Server v4+ enables `csrfPrevention` by default \u2014 it requires a non-simple Content-Type header on mutations to block CSRF attacks from <form>-style submissions. Setting `csrfPrevention: false` removes that protection, letting any website with a logged-in user trigger mutations on your GraphQL endpoint.",
6759
+ check(content, filePath) {
6760
+ if (!GQL_FILE_RE.test(filePath)) return [];
6761
+ if (isTestFile(filePath)) return [];
6762
+ const findings = [];
6763
+ const pattern = /\bcsrfPrevention\s*:\s*false\b/g;
6764
+ let m;
6765
+ while ((m = pattern.exec(content)) !== null) {
6766
+ if (isCommentLine(content, m.index)) continue;
6767
+ const lineNum = content.substring(0, m.index).split("\n").length;
6768
+ findings.push({
6769
+ rule: "VC206",
6770
+ title: graphqlCSRFDisabled.title,
6771
+ severity: "high",
6772
+ category: "Configuration",
6773
+ file: filePath,
6774
+ line: lineNum,
6775
+ snippet: getSnippet(content, lineNum),
6776
+ fix: "Remove `csrfPrevention: false` \u2014 it's the default in Apollo Server v4+. If a legitimate client is failing because of it, send a `Content-Type: application/json` header (or set `apollo-require-preflight: true`) instead of disabling the protection globally."
6777
+ });
6778
+ }
6779
+ return findings;
6780
+ }
6781
+ };
6782
+ var secretInURLParam = {
6783
+ id: "VC146",
6784
+ title: "Secret Passed in URL Query Parameter",
6785
+ severity: "critical",
6786
+ category: "Secrets",
6787
+ description: "API keys or tokens in URL query parameters are logged in server access logs, browser history, referrer headers, and proxy logs. Secrets in URLs are one of the most common causes of credential exposure.",
6788
+ check(content, filePath) {
6789
+ if (isTestFile(filePath)) return [];
6790
+ if (!filePath.match(/\.(js|ts|jsx|tsx|py|rb|go|java|php)$/)) return [];
6791
+ const findings = [];
6792
+ const patterns = [
6793
+ // Template literals: `?api_key=${secret}` or `&token=${token}`
6794
+ /[?&](?:api_key|apikey|api_secret|token|access_token|secret|key|password|auth|authorization)=\$\{/gi,
6795
+ // String concat: '?key=' + apiKey
6796
+ /[?&](?:api_key|apikey|api_secret|token|access_token|secret|key|password|auth)=["']\s*\+/gi,
6797
+ // Python f-strings: f"?token={token}"
6798
+ /[?&](?:api_key|apikey|token|access_token|secret|key|password)=\{[a-zA-Z_]/g
6799
+ ];
6800
+ for (const p of patterns) {
6801
+ let m;
6802
+ const re = new RegExp(p.source, p.flags.includes("g") ? p.flags : `${p.flags}g`);
6803
+ while ((m = re.exec(content)) !== null) {
6804
+ if (isCommentLine(content, m.index)) continue;
6805
+ if (isInsideFixMessage(content, m.index)) continue;
6806
+ const lineNum = content.substring(0, m.index).split("\n").length;
6807
+ findings.push({
6808
+ rule: "VC146",
6809
+ title: this.title,
6810
+ severity: "critical",
6811
+ category: "Secrets",
6812
+ file: filePath,
6813
+ line: lineNum,
6814
+ snippet: getSnippet(content, lineNum),
6815
+ fix: "Pass secrets in the Authorization header (Bearer token) or request body, never in URL parameters. URL parameters are logged in server access logs, browser history, and referrer headers."
6816
+ });
6817
+ }
6818
+ }
6819
+ return findings;
6820
+ }
6821
+ };
6822
+ var secretLoggedToConsole = {
6823
+ id: "VC147",
6824
+ title: "Secret Logged to Console",
6825
+ severity: "high",
6826
+ category: "Secrets",
6827
+ description: "Logging variables that appear to contain secrets (key, token, password, secret) writes credentials to stdout, log files, and monitoring services where they can be harvested.",
6828
+ check(content, filePath) {
6829
+ if (isTestFile(filePath)) return [];
6830
+ if (!filePath.match(/\.(js|ts|jsx|tsx)$/)) return [];
6831
+ const findings = [];
6832
+ const pattern = /console\.(?:log|debug|info|warn|error)\s*\([^)]*\b(api[_-]?key|apikey|secret|token|password|passwd|credentials|private[_-]?key|auth[_-]?token|access[_-]?token)\b/gi;
6833
+ let m;
6834
+ while ((m = pattern.exec(content)) !== null) {
6835
+ if (isCommentLine(content, m.index)) continue;
6836
+ if (isInsideFixMessage(content, m.index)) continue;
6837
+ const lineNum = content.substring(0, m.index).split("\n").length;
6838
+ findings.push({
6839
+ rule: "VC147",
6840
+ title: this.title,
6841
+ severity: "high",
6842
+ category: "Secrets",
6843
+ file: filePath,
6844
+ line: lineNum,
6845
+ snippet: getSnippet(content, lineNum),
6846
+ fix: "Remove this console statement or redact the secret before logging. Use structured logging with a secret-redaction filter in production."
6847
+ });
6848
+ }
6849
+ return findings;
6850
+ }
6851
+ };
6852
+ var secretInErrorResponse = {
6853
+ id: "VC148",
6854
+ title: "Secret Leaked in Error Response",
6855
+ severity: "critical",
6856
+ category: "Secrets",
6857
+ description: "Returning secrets or secret-named variables in API error responses exposes credentials to anyone who can trigger the error, including unauthenticated users.",
6858
+ check(content, filePath) {
6859
+ if (isTestFile(filePath)) return [];
6860
+ if (!filePath.match(/\.(js|ts|jsx|tsx)$/)) return [];
6861
+ const findings = [];
6862
+ const pattern = /(?:res\.(?:json|send|status\s*\([^)]*\)\s*\.json))\s*\(\s*\{[^}]*\b(api[_-]?key|secret|token|password|credentials|private[_-]?key|process\.env\.[A-Z_]*(?:KEY|SECRET|TOKEN|PASSWORD))\b/gi;
6863
+ let m;
6864
+ while ((m = pattern.exec(content)) !== null) {
6865
+ if (isCommentLine(content, m.index)) continue;
6866
+ if (isInsideFixMessage(content, m.index)) continue;
6867
+ const lineNum = content.substring(0, m.index).split("\n").length;
6868
+ findings.push({
6869
+ rule: "VC148",
6870
+ title: this.title,
6871
+ severity: "critical",
6872
+ category: "Secrets",
6873
+ file: filePath,
6874
+ line: lineNum,
6875
+ snippet: getSnippet(content, lineNum),
6876
+ fix: "Never include secrets in API responses. Return a generic error message and log the detailed error server-side only."
6877
+ });
6878
+ }
6879
+ return findings;
6880
+ }
6881
+ };
6882
+ var secretInBundleConfig = {
6883
+ id: "VC149",
6884
+ title: "Secret in Client-Side Bundle Configuration",
6885
+ severity: "critical",
6886
+ category: "Secrets",
6887
+ description: "Secrets defined in Webpack DefinePlugin, Vite define, or Next.js publicRuntimeConfig are embedded into the client-side JavaScript bundle and visible to anyone viewing the page source.",
6888
+ check(content, filePath) {
6889
+ if (isTestFile(filePath)) return [];
6890
+ if (!filePath.match(/(?:webpack|vite|next)\.config\.|\.config\.(js|ts|mjs)$/)) return [];
6891
+ const findings = [];
6892
+ const patterns = [
6893
+ // Webpack DefinePlugin with secret-named key
6894
+ /DefinePlugin\s*\(\s*\{[^}]*\b(?:API_KEY|SECRET|TOKEN|PASSWORD|PRIVATE_KEY|CLIENT_SECRET)\b/gi,
6895
+ // Vite define with secret-named key
6896
+ /define\s*:\s*\{[^}]*\b(?:API_KEY|SECRET|TOKEN|PASSWORD|PRIVATE_KEY|CLIENT_SECRET)\b/gi,
6897
+ // Next.js publicRuntimeConfig with secret-named key
6898
+ /publicRuntimeConfig\s*:\s*\{[^}]*\b(?:apiKey|secret|token|password|privateKey|clientSecret)\b/gi
6899
+ ];
6900
+ for (const p of patterns) {
6901
+ let m;
6902
+ const re = new RegExp(p.source, p.flags.includes("g") ? p.flags : `${p.flags}g`);
6903
+ while ((m = re.exec(content)) !== null) {
6904
+ if (isCommentLine(content, m.index)) continue;
6905
+ if (isInsideFixMessage(content, m.index)) continue;
6906
+ const lineNum = content.substring(0, m.index).split("\n").length;
6907
+ findings.push({
6908
+ rule: "VC149",
6909
+ title: this.title,
6910
+ severity: "critical",
6911
+ category: "Secrets",
6912
+ file: filePath,
6913
+ line: lineNum,
6914
+ snippet: getSnippet(content, lineNum),
6915
+ fix: "Move secrets to server-side environment variables. Only expose public configuration (like API base URLs) in client-side bundle config. Use serverRuntimeConfig (Next.js) or server-only modules."
6916
+ });
6917
+ }
6918
+ }
6919
+ return findings;
6920
+ }
6921
+ };
6922
+ var secretInHTMLAttribute = {
6923
+ id: "VC150",
6924
+ title: "Secret in HTML Meta Tag or Data Attribute",
6925
+ severity: "high",
6926
+ category: "Secrets",
6927
+ description: "API keys or tokens embedded in HTML meta tags or data-* attributes are visible in the page source to anyone who visits the page, including search engine crawlers.",
6928
+ check(content, filePath) {
6929
+ if (isTestFile(filePath)) return [];
6930
+ if (!filePath.match(/\.(html|htm|jsx|tsx|vue|svelte|ejs|hbs|pug)$/)) return [];
6931
+ const findings = [];
6932
+ const patterns = [
6933
+ // <meta name="api-key" content="...">
6934
+ /<meta\s[^>]*name\s*=\s*["'](?:api[_-]?key|secret|token|password)[^>]*>/gi,
6935
+ // data-api-key="actual-value" (not a template/binding)
6936
+ /data-(?:api[_-]?key|secret|token|password|auth)\s*=\s*["'][a-zA-Z0-9_\-]{12,}["']/gi
6937
+ ];
6938
+ for (const p of patterns) {
6939
+ let m;
6940
+ const re = new RegExp(p.source, p.flags.includes("g") ? p.flags : `${p.flags}g`);
6941
+ while ((m = re.exec(content)) !== null) {
6942
+ if (isCommentLine(content, m.index)) continue;
6943
+ if (isInsideFixMessage(content, m.index)) continue;
6944
+ const lineNum = content.substring(0, m.index).split("\n").length;
6945
+ findings.push({
6946
+ rule: "VC150",
6947
+ title: this.title,
6948
+ severity: "high",
6949
+ category: "Secrets",
6950
+ file: filePath,
6951
+ line: lineNum,
6952
+ snippet: getSnippet(content, lineNum),
6953
+ fix: "Never embed secrets in HTML attributes or meta tags. Load configuration from server-side APIs or use server-rendered environment injection with non-secret values only."
6954
+ });
6955
+ }
6956
+ }
6957
+ return findings;
6958
+ }
6959
+ };
6960
+ var secretInCLIArgument = {
6961
+ id: "VC151",
6962
+ title: "Secret Passed as Command-Line Argument",
6963
+ severity: "high",
6964
+ category: "Secrets",
6965
+ description: "Secrets interpolated into exec/spawn/execSync command strings are visible in process listings (ps aux), shell history, and system audit logs to any user on the same machine.",
6966
+ check(content, filePath) {
6967
+ if (isTestFile(filePath)) return [];
6968
+ if (!filePath.match(/\.(js|ts|jsx|tsx|py|rb)$/)) return [];
6969
+ const findings = [];
6970
+ const patterns = [
6971
+ /(?:exec|execSync|spawn|spawnSync|child_process)\s*\([^)]*\$\{[^}]*(?:api[_-]?key|secret|token|password|credentials)/gi,
6972
+ /(?:exec|execSync|spawn|spawnSync|child_process)\s*\([^)]*["']\s*\+\s*(?:api[_-]?key|secret|token|password|credentials)/gi,
6973
+ /(?:subprocess|os\.system|os\.popen)\s*\([^)]*\{[^}]*(?:api[_-]?key|secret|token|password|credentials)/gi
6974
+ ];
6975
+ for (const p of patterns) {
6976
+ let m;
6977
+ const re = new RegExp(p.source, p.flags.includes("g") ? p.flags : `${p.flags}g`);
6978
+ while ((m = re.exec(content)) !== null) {
6979
+ if (isCommentLine(content, m.index)) continue;
6980
+ if (isInsideFixMessage(content, m.index)) continue;
6981
+ const lineNum = content.substring(0, m.index).split("\n").length;
6982
+ findings.push({
6983
+ rule: "VC151",
4626
6984
  title: this.title,
4627
6985
  severity: "high",
4628
6986
  category: "Secrets",
@@ -5084,7 +7442,61 @@ var allCustomRules = [
5084
7442
  missingAIRateLimit,
5085
7443
  missingPagination,
5086
7444
  exposedDatabaseStudio,
5087
- insecureDirectObjectReference
7445
+ insecureDirectObjectReference,
7446
+ // VC159–VC183: additional service-specific API key detection
7447
+ hardcodedCohereKey,
7448
+ hardcodedReplicateKey,
7449
+ hardcodedMistralKey,
7450
+ hardcodedTogetherKey,
7451
+ hardcodedGroqKey,
7452
+ hardcodedFireworksKey,
7453
+ hardcodedPostmarkKey,
7454
+ hardcodedResendKey,
7455
+ hardcodedLoopsKey,
7456
+ hardcodedCloudflareToken,
7457
+ hardcodedFastlyToken,
7458
+ hardcodedNetlifyToken,
7459
+ hardcodedRailwayToken,
7460
+ hardcodedFlyToken,
7461
+ hardcodedAlgoliaAdminKey,
7462
+ hardcodedQdrantKey,
7463
+ hardcodedWeaviateKey,
7464
+ hardcodedLinearKey,
7465
+ hardcodedNotionKey,
7466
+ hardcodedDiscordToken,
7467
+ hardcodedIntercomToken,
7468
+ hardcodedSentryAuthToken,
7469
+ hardcodedLogtailToken,
7470
+ hardcodedHighlightKey,
7471
+ hardcodedPlivoToken,
7472
+ // VC184–VC187: GitHub Actions workflow security
7473
+ ghaPullRequestTargetCheckout,
7474
+ ghaPermissionsWriteAll,
7475
+ ghaExpressionInjection,
7476
+ ghaThirdPartyActionWithSecrets,
7477
+ // VC188–VC190: Dockerfile hardening
7478
+ dockerfileADDInsteadOfCOPY,
7479
+ dockerfileUnverifiedShellPipe,
7480
+ dockerfileMissingHealthcheck,
7481
+ // VC191–VC197: Python-specific security gaps
7482
+ pyRequestsVerifyFalse,
7483
+ pyJinja2AutoescapeOff,
7484
+ pyTempfileMktemp,
7485
+ pyDjangoMarkSafe,
7486
+ pyParamikoAutoAdd,
7487
+ pyDjangoAllowedHostsWildcard,
7488
+ pyJWTDecodeWeakConfig,
7489
+ // VC198–VC203: AI / LLM-specific security
7490
+ llmPromptInjection,
7491
+ llmSystemPromptInjection,
7492
+ llmOutputAsHTML,
7493
+ vectorStoreQueryNoUserFilter,
7494
+ vectorStoreUpsertNoMetadata,
7495
+ llmCallNoMaxTokens,
7496
+ // VC204–VC206: GraphQL server hardening
7497
+ graphqlNoDepthLimit,
7498
+ graphqlNoComplexityLimit,
7499
+ graphqlCSRFDisabled
5088
7500
  ];
5089
7501
  function runCustomRules(content, filePath, disabledRules = [], tier = "free", extraRules = []) {
5090
7502
  const findings = [];
@@ -5409,7 +7821,9 @@ export {
5409
7821
  allRules,
5410
7822
  androidDebuggable,
5411
7823
  blockingMainThread,
7824
+ buildTaintMap,
5412
7825
  calculateGrade,
7826
+ callSpreads,
5413
7827
  callbackHell,
5414
7828
  clickjacking,
5415
7829
  clientComponentSecret,
@@ -5429,6 +7843,9 @@ export {
5429
7843
  dockerLatestTag,
5430
7844
  dockerRunAsRoot,
5431
7845
  dockerTooManyPorts,
7846
+ dockerfileADDInsteadOfCOPY,
7847
+ dockerfileMissingHealthcheck,
7848
+ dockerfileUnverifiedShellPipe,
5432
7849
  ecbModeEncryption,
5433
7850
  electronNavigationUnrestricted,
5434
7851
  emptyCatchBlock,
@@ -5450,28 +7867,61 @@ export {
5450
7867
  firebaseClientConfig,
5451
7868
  flaskSecretKey,
5452
7869
  freeRules,
7870
+ getObjectProperty,
5453
7871
  getSnippet,
7872
+ ghaExpressionInjection,
7873
+ ghaPermissionsWriteAll,
7874
+ ghaPullRequestTargetCheckout,
7875
+ ghaThirdPartyActionWithSecrets,
5454
7876
  githubActionsInjection,
7877
+ graphqlCSRFDisabled,
5455
7878
  graphqlIntrospection,
7879
+ graphqlNoComplexityLimit,
7880
+ graphqlNoDepthLimit,
7881
+ hardcodedAlgoliaAdminKey,
5456
7882
  hardcodedAnthropicKey,
7883
+ hardcodedCloudflareToken,
7884
+ hardcodedCohereKey,
5457
7885
  hardcodedDatadogKey,
7886
+ hardcodedDiscordToken,
5458
7887
  hardcodedEncryptionKey,
7888
+ hardcodedFastlyToken,
7889
+ hardcodedFireworksKey,
7890
+ hardcodedFlyToken,
5459
7891
  hardcodedGCPServiceAccount,
5460
7892
  hardcodedGitHubPAT,
5461
7893
  hardcodedGitLabToken,
7894
+ hardcodedGroqKey,
7895
+ hardcodedHighlightKey,
5462
7896
  hardcodedIPAllowlist,
7897
+ hardcodedIntercomToken,
5463
7898
  hardcodedJWTSecret,
7899
+ hardcodedLinearKey,
7900
+ hardcodedLogtailToken,
7901
+ hardcodedLoopsKey,
5464
7902
  hardcodedMailgunKey,
7903
+ hardcodedMistralKey,
7904
+ hardcodedNetlifyToken,
7905
+ hardcodedNotionKey,
5465
7906
  hardcodedOAuthSecret,
5466
7907
  hardcodedPineconeKey,
7908
+ hardcodedPlivoToken,
7909
+ hardcodedPostmarkKey,
7910
+ hardcodedQdrantKey,
7911
+ hardcodedRailwayToken,
7912
+ hardcodedReplicateKey,
7913
+ hardcodedResendKey,
5467
7914
  hardcodedSecrets,
5468
7915
  hardcodedSendGridKey,
7916
+ hardcodedSentryAuthToken,
5469
7917
  hardcodedShopifyToken,
5470
7918
  hardcodedSlackToken,
5471
7919
  hardcodedSupabaseServiceRole,
7920
+ hardcodedTogetherKey,
5472
7921
  hardcodedTwilioKey,
5473
7922
  hardcodedVaultToken,
5474
7923
  hardcodedVercelToken,
7924
+ hardcodedWeaviateKey,
5475
7925
  hostHeaderRedirect,
5476
7926
  httpRequestSmuggling,
5477
7927
  insecureCookies,
@@ -5486,6 +7936,8 @@ export {
5486
7936
  insecureRandomness,
5487
7937
  insecureWebSocket,
5488
7938
  ipcPathTraversal,
7939
+ isCalleeNamed,
7940
+ isMethodCall,
5489
7941
  javaDeserialization,
5490
7942
  jwtAlgConfusion,
5491
7943
  k8sNoResourceLimits,
@@ -5493,6 +7945,10 @@ export {
5493
7945
  k8sSecretNotEncrypted,
5494
7946
  lambdaWithoutVPC,
5495
7947
  largeBundleImport,
7948
+ llmCallNoMaxTokens,
7949
+ llmOutputAsHTML,
7950
+ llmPromptInjection,
7951
+ llmSystemPromptInjection,
5496
7952
  logInjection,
5497
7953
  magicNumbers,
5498
7954
  massAssignment,
@@ -5523,10 +7979,18 @@ export {
5523
7979
  nosqlInjection,
5524
7980
  openRedirectParams,
5525
7981
  overlyPermissiveIAM,
7982
+ parseFile,
5526
7983
  pathTraversal,
5527
7984
  pickleDeserialization,
5528
7985
  piiInLogs,
5529
7986
  prototypePollution,
7987
+ pyDjangoAllowedHostsWildcard,
7988
+ pyDjangoMarkSafe,
7989
+ pyJWTDecodeWeakConfig,
7990
+ pyJinja2AutoescapeOff,
7991
+ pyParamikoAutoAdd,
7992
+ pyRequestsVerifyFalse,
7993
+ pyTempfileMktemp,
5530
7994
  raceCondition,
5531
7995
  rdsPubliclyAccessible,
5532
7996
  reflectedCORSOrigin,
@@ -5566,6 +8030,10 @@ export {
5566
8030
  unvalidatedAPIParams,
5567
8031
  unvalidatedEventData,
5568
8032
  unvalidatedRedirect,
8033
+ vectorStoreQueryNoUserFilter,
8034
+ vectorStoreUpsertNoMetadata,
8035
+ visitBinary,
8036
+ visitCalls,
5569
8037
  vulnerableDependencies,
5570
8038
  weakHashing,
5571
8039
  weakPasswordRequirements,