@atomist/sdm-pack-aspect/lib/aspect/secret/exposedSecrets.js

an Atomist SDM Extension Pack for visualizing drift across an organization

"use strict";
/*
 * Copyright © 2019 Atomist, Inc.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
    return new (P || (P = Promise))(function (resolve, reject) {
        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
        step((generator = generator.apply(thisArg, _arguments || [])).next());
    });
};
Object.defineProperty(exports, "__esModule", { value: true });
const sdm_pack_fingerprint_1 = require("@atomist/sdm-pack-fingerprint");
const secretSniffing_1 = require("./secretSniffing");
const snifferOptionsLoader_1 = require("./snifferOptionsLoader");
const ExposedSecretsType = "exposed-secret";
/**
 * Fingerprints the presence of exposed secrets, detected by
 * searching code for regular expressions.
 */
exports.ExposedSecrets = {
    name: ExposedSecretsType,
    displayName: "Exposed secrets",
    baseOnly: true,
    extract: (p) => __awaiter(void 0, void 0, void 0, function* () {
        const exposedSecretsResult = yield secretSniffing_1.sniffProject(p, yield snifferOptionsLoader_1.loadSnifferOptions());
        return exposedSecretsResult.exposedSecrets.map(es => {
            const data = {
                secret: es.secret,
                path: es.path,
                description: es.description,
            };
            return {
                type: ExposedSecretsType,
                name: ExposedSecretsType,
                data,
                sha: sdm_pack_fingerprint_1.sha256(JSON.stringify(data)),
            };
        });
    }),
    toDisplayableFingerprintName: name => name,
    toDisplayableFingerprint: fp => `${fp.data.path}:${fp.data.description}`,
    stats: {
        defaultStatStatus: {
            entropy: false,
        },
    },
};
//# sourceMappingURL=exposedSecrets.js.map