@sun-asterisk/sunlint/rules/security/S013_tls_enforcement/config.json

☀️ SunLint - Multi-language static analysis tool for code quality and security | Sun* Engineering Standards

{
  "id": "S013",
  "name": "Enforce TLS for all connections",
  "category": "security",
  "description": "S013 - Ensure TLS (HTTPS) is always used for network connections and server bindings. Detects unsecured HTTP server creation, use of http:// endpoints in client calls, and framework-specific configurations that disable HTTPS.",
  "severity": "error",
  "enabled": true,
  "semantic": {
    "enabled": true,
    "priority": "high",
    "fallback": "heuristic"
  },
  "patterns": {
    "include": ["**/*.js", "**/*.ts", "**/*.jsx", "**/*.tsx"],
    "exclude": [
      "**/*.test.js",
      "**/*.test.ts",
      "**/*.spec.js",
      "**/*.spec.ts",
      "**/node_modules/**",
      "**/dist/**",
      "**/build/**"
    ]
  },
  "analysis": {
    "approach": "symbol-based-primary",
    "fallback": "regex-based",
    "depth": 1,
    "timeout": 4000
  },
  "validation": {
    "httpIndicators": [
      "http://",
      "require('http')",
      "require(\"http\")",
      "http.createServer"
    ],
    "httpsModules": ["https", "tls"],
    "frameworks": ["express", "nextjs", "nuxtjs", "nestjs"]
  }
}