UNPKG

@atomist/sdm-pack-aspect

Version:

an Atomist SDM Extension Pack for visualizing drift across an organization

github.com/atomist/sdm-pack-aspect

atomist/sdm-pack-aspect

55 lines (48 loc) 1.83 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
/* * Copyright © 2019 Atomist, Inc. * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ import { SecretDefinition, SnifferOptions, } from "./secretSniffing"; import * as yaml from "yamljs"; import { AllFiles } from "@atomist/automation-client"; import * as fs from "fs"; import * as path from "path"; /** * Based on regular expressions in https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_04B-3_Meli_paper.pdf * @type {any[]} */ export async function loadSnifferOptions(): Promise<SnifferOptions> { const secretsYmlPath = path.join(__dirname, "..", "..", "..", "secrets.yml"); const yamlString = fs.readFileSync(secretsYmlPath, "utf8"); try { const native = await yaml.parse(yamlString); const secretDefinitions: SecretDefinition[] = native.secrets .map((s: any) => s.secret) .map((s: any) => ({ pattern: new RegExp(s.pattern, "g"), description: s.description, })); return { secretDefinitions, whitelist: native.whitelist || [], globs: native.globs || [AllFiles], scanOnlyChangedFiles: native.scanOnlyChangedFiles || false, }; } catch (err) { throw new Error(`Unable to parse secrets.yml: ${err.message}`); } }