UNPKG

n8n

Version:

n8n Workflow Automation Tool

n8n.io

n8n-io/n8n

106 lines 5.24 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
"use strict"; var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) { if (k2 === undefined) k2 = k; var desc = Object.getOwnPropertyDescriptor(m, k); if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) { desc = { enumerable: true, get: function() { return m[k]; } }; } Object.defineProperty(o, k2, desc); }) : (function(o, m, k, k2) { if (k2 === undefined) k2 = k; o[k2] = m[k]; })); var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) { Object.defineProperty(o, "default", { enumerable: true, value: v }); }) : function(o, v) { o["default"] = v; }); var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) { var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d; if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc); else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r; return c > 3 && r && Object.defineProperty(target, key, r), r; }; var __importStar = (this && this.__importStar) || (function () { var ownKeys = function(o) { ownKeys = Object.getOwnPropertyNames || function (o) { var ar = []; for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k; return ar; }; return ownKeys(o); }; return function (mod) { if (mod && mod.__esModule) return mod; var result = {}; if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]); __setModuleDefault(result, mod); return result; }; })(); var __metadata = (this && this.__metadata) || function (k, v) { if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v); }; var __importDefault = (this && this.__importDefault) || function (mod) { return (mod && mod.__esModule) ? mod : { "default": mod }; }; Object.defineProperty(exports, "__esModule", { value: true }); exports.SecurityAuditService = void 0; const config_1 = require("@n8n/config"); const di_1 = require("@n8n/di"); const config_2 = __importDefault(require("../config")); const workflow_repository_1 = require("../databases/repositories/workflow.repository"); const constants_1 = require("../security-audit/constants"); const utils_1 = require("../security-audit/utils"); let SecurityAuditService = class SecurityAuditService { constructor(workflowRepository, securityConfig) { this.workflowRepository = workflowRepository; this.securityConfig = securityConfig; this.reporters = {}; } async run(categories = constants_1.RISK_CATEGORIES, daysAbandonedWorkflow) { if (categories.length === 0) categories = constants_1.RISK_CATEGORIES; await this.initReporters(categories); const daysFromEnv = this.securityConfig.daysAbandonedWorkflow; if (daysAbandonedWorkflow) { config_2.default.set('security.audit.daysAbandonedWorkflow', daysAbandonedWorkflow); } const workflows = await this.workflowRepository.find({ select: ['id', 'name', 'active', 'nodes', 'connections'], }); const promises = categories.map(async (c) => await this.reporters[c].report(workflows)); const reports = (await Promise.all(promises)).filter((r) => r !== null); if (daysAbandonedWorkflow) { config_2.default.set('security.audit.daysAbandonedWorkflow', daysFromEnv); } if (reports.length === 0) return []; return reports.reduce((acc, cur) => { acc[(0, utils_1.toReportTitle)(cur.risk)] = cur; return acc; }, {}); } async initReporters(categories) { for (const category of categories) { const className = category.charAt(0).toUpperCase() + category.slice(1) + 'RiskReporter'; const toFilename = { CredentialsRiskReporter: 'credentials-risk-reporter', DatabaseRiskReporter: 'database-risk-reporter', FilesystemRiskReporter: 'filesystem-risk-reporter', InstanceRiskReporter: 'instance-risk-reporter', NodesRiskReporter: 'nodes-risk-reporter', }; const RiskReporterModule = await Promise.resolve(`${`./risk-reporters/${toFilename[className]}`}`).then(s => __importStar(require(s))); const RiskReporterClass = RiskReporterModule[className]; this.reporters[category] = di_1.Container.get(RiskReporterClass); } } }; exports.SecurityAuditService = SecurityAuditService; exports.SecurityAuditService = SecurityAuditService = __decorate([ (0, di_1.Service)(), __metadata("design:paramtypes", [workflow_repository_1.WorkflowRepository, config_1.SecurityConfig]) ], SecurityAuditService); //# sourceMappingURL=security-audit.service.js.map