UNPKG

nullvoid

Version:

Detect malicious code

github.com/kurt-grung/NullVoid

kurt-grung/NullVoid

163 lines 5.75 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
/** * Configuration Constants for NullVoid * Centralizes all configuration values and magic numbers */ import { ScanConfig, SecurityConfig, PerformanceConfig } from '../types'; /** * Cache configuration */ export declare const CACHE_CONFIG: { readonly TTL: number; readonly MAX_SIZE: 1000; readonly CLEANUP_INTERVAL: number; }; /** * Network configuration */ export declare const NETWORK_CONFIG: { readonly TIMEOUT: 5000; readonly MAX_RETRIES: 3; readonly RETRY_DELAY: 1000; readonly RATE_LIMIT: { readonly MAX_REQUESTS: 100; readonly WINDOW_SIZE: number; }; }; /** * Parallel processing configuration */ export declare const PARALLEL_CONFIG: { readonly MAX_WORKERS: 8; readonly CHUNK_SIZE: 10; readonly TIMEOUT: 30000; readonly RETRY_ATTEMPTS: 2; readonly MIN_CHUNK_SIZE: 5; readonly MAX_CHUNK_SIZE: 20; }; /** * File processing configuration */ export declare const FILE_CONFIG: { readonly MAX_FILE_SIZE: number; readonly MAX_FILES_PER_PACKAGE: 1000; readonly SCAN_TIMEOUT: 30000; }; /** * Entropy thresholds for different content types */ export declare const ENTROPY_THRESHOLDS: { readonly JAVASCRIPT: 4.5; readonly JSON: 3; readonly TEXT: 2.5; readonly BINARY: 6; readonly DEFAULT: 4; }; /** * Security patterns and configurations */ export declare const SECURITY_PATTERNS: { readonly SUSPICIOUS_PATTERNS: readonly [RegExp, RegExp, RegExp, RegExp, RegExp, RegExp, RegExp, RegExp]; readonly DANGEROUS_FUNCTIONS: readonly ["eval", "Function", "setTimeout", "setInterval", "setImmediate", "process.nextTick", "require", "import", "exec", "spawn", "execFile"]; readonly NETWORK_PATTERNS: readonly [RegExp, RegExp, RegExp, RegExp, RegExp, RegExp, RegExp, RegExp]; readonly FILE_SYSTEM_PATTERNS: readonly [RegExp, RegExp, RegExp, RegExp, RegExp, RegExp, RegExp, RegExp]; }; /** * Validation configuration */ export declare const VALIDATION_CONFIG: { readonly PACKAGE_NAME_PATTERN: RegExp; readonly PACKAGE_NAME_MAX_LENGTH: 214; readonly PACKAGE_NAME_MIN_LENGTH: 1; readonly VALID_FORMATS: readonly ["json", "table", "yaml", "sarif"]; readonly SEMVER_PATTERN: RegExp; readonly ALLOWED_EXTENSIONS: readonly [".js", ".mjs", ".ts", ".jsx", ".tsx", ".json"]; readonly SUSPICIOUS_PATTERNS: readonly [RegExp, RegExp, RegExp, RegExp, RegExp, RegExp, RegExp, RegExp]; readonly VALID_PACKAGE_NAME: RegExp; readonly VALID_LOCAL_PATH: RegExp; readonly TRAVERSAL_PATTERNS: readonly [RegExp, RegExp, RegExp, RegExp, RegExp, RegExp]; readonly DANGEROUS_PATTERNS: readonly [RegExp, RegExp, RegExp, RegExp, RegExp, RegExp, RegExp]; readonly MALICIOUS_PATTERNS: readonly [RegExp, RegExp, RegExp, RegExp, RegExp, RegExp, RegExp, RegExp]; readonly DANGEROUS_FILES: readonly ["malware.js", "virus.js", "trojan.js", "backdoor.js", "keylogger.js", "spyware.js", "rootkit.js", "botnet.js"]; readonly SUSPICIOUS_SCRIPTS: readonly ["curl http", "wget http", "rm -rf", "chmod 777", "chown root", "sudo", "su -", "passwd", "useradd", "userdel"]; }; /** * Test patterns configuration */ export declare const TEST_PATTERNS_CONFIG: { readonly JEST_OUTPUT_PATTERNS: { readonly PASSED: RegExp; readonly FAILED: RegExp; readonly SKIPPED: RegExp; readonly TOTAL: RegExp; readonly SUMMARY: RegExp; }; readonly BADGE_REGEX: RegExp; }; /** * Dependency confusion configuration */ export declare const DEPENDENCY_CONFUSION_CONFIG: { readonly TIMELINE_THRESHOLDS: { readonly SUSPICIOUS_AGE_DAYS: 7; readonly RAPID_PUBLISHING_HOURS: 24; readonly VERSION_GAP_DAYS: 30; }; readonly SIMILARITY_THRESHOLDS: { readonly HIGH_SIMILARITY: 0.8; readonly MEDIUM_SIMILARITY: 0.6; readonly LOW_SIMILARITY: 0.4; }; readonly SCOPE_PATTERNS: readonly [RegExp, RegExp, RegExp]; readonly SUSPICIOUS_NAME_PATTERNS: readonly [RegExp, RegExp, RegExp, RegExp, RegExp, RegExp, RegExp, RegExp, RegExp]; readonly REGISTRY_ENDPOINTS: { readonly npm: "https://registry.npmjs.org"; readonly yarn: "https://registry.yarnpkg.com"; readonly github: "https://npm.pkg.github.com"; }; readonly ANALYSIS_SETTINGS: { readonly MAX_GIT_COMMITS: 100; readonly MAX_PACKAGE_VERSIONS: 50; readonly TIMEOUT_MS: 10000; readonly RETRY_ATTEMPTS: 3; }; }; /** * Popular frameworks and libraries */ export declare const POPULAR_FRAMEWORKS: readonly ["react", "vue", "angular", "express", "koa", "fastify", "next", "nuxt", "gatsby", "webpack", "rollup", "vite", "parcel", "babel", "typescript", "eslint", "prettier", "jest", "mocha", "cypress", "playwright", "puppeteer"]; /** * Main configuration objects */ export declare const SCAN_CONFIG: ScanConfig; export declare const SECURITY_CONFIG: SecurityConfig; export declare const PERFORMANCE_CONFIG: PerformanceConfig; /** * Update configuration from environment variables */ export declare function updateConfigFromEnv(): void; export declare const DETECTION_CONFIG: { LEGITIMATE_PATTERNS: RegExp[]; MALWARE_PATTERNS: { variableMangling: RegExp[]; obfuscation: RegExp[]; suspiciousFunctions: RegExp[]; dynamicRequires: RegExp[]; walletHijacking: RegExp[]; }; OBFUSCATION_PATTERNS: { VARIABLE_MANGLING: RegExp; MASSIVE_BLOB: RegExp; HEX_ARRAYS: RegExp; MODULE_APPEND: RegExp; }; IOC_PATTERNS: { URLS: RegExp; IPS: RegExp; DOMAINS: RegExp; }; DYNAMIC_REQUIRE_PATTERNS: { REQUIRE: RegExp; IMPORT: RegExp; }; }; //# sourceMappingURL=config.d.ts.map