UNPKG

pastoralist

Version:

A tool to watch over node module resolutions and overrides

jeffry.in/pastoralist

yowainwright/pastoralist

91 lines (90 loc) 3.64 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
import { SecurityAlert, SecurityCheckResult, SecurityCheckRuntimeOptions, SecurityOverride, SecurityProviderFactoryOptions } from "../../types"; import { PastoralistJSON, OverridesType } from "../../types"; export * from "./providers"; export declare class SecurityChecker { private static readonly DEFAULT_MEMORY_CACHE_TTL; private providers; private log; private cache; private cacheConfigHash; private readonly diskAlertsCache; private readonly strict; private readonly noCache; private readonly refreshCache; private readonly configuredCacheDir?; constructor(options: SecurityProviderFactoryOptions); private resolveCacheTtlMs; private buildCacheConfigHash; private createProviders; private isKnownSecurityProvider; private hasProviderSetup; ensureProviderAuth(providerType: string, options?: { debug?: boolean; interactive?: boolean; }): Promise<boolean>; private createProvider; private createOsvProvider; private createGitHubProvider; private createSnykProvider; private createSocketProvider; private createSpektionProvider; private createPackageManagerAuditProvider; private createFallbackProvider; private generateCacheKey; private generateDiskCacheKey; checkSecurity(config: PastoralistJSON, options?: SecurityCheckRuntimeOptions): Promise<SecurityCheckResult>; private runSecurityCheck; private emptySecurityResult; private reportProgress; private extractPackagesForScan; private resolveCachedAlerts; private cacheSecurityAlerts; private resolveSecurityAlerts; private fetchProviderAlerts; private normalizeProviderResult; private resolveVulnerablePackages; private filterAlertsBySeverity; private findWorkspaceVulnerabilitiesIfNeeded; private promptForOverridesIfNeeded; private readPackageFile; private isNewVulnerability; private createVulnerabilityKey; private extractNewVulnerabilities; private findWorkspaceVulnerabilities; private resolveWorkspacePackageFiles; private collectWorkspaceVulnerabilities; private addPackageVulnerabilities; private checkOverrideUpdates; private getExistingOverrides; private logNestedOverrideSkips; private getStringOverrideEntries; private groupPatchableAlertsByPackage; private buildOverrideUpdate; private findNewerPatch; private fetchLatestForVulnerablePackages; private generateOverrides; private canGenerateOverride; private resolveOverrideTargetVersion; private buildSecurityOverride; private buildSecurityOverrideMetadata; generatePackageOverrides(securityOverrides: SecurityOverride[]): OverridesType; private formatVulnerabilityEntry; private formatOverridesSection; formatSecurityReport(vulnerablePackages: SecurityAlert[], securityOverrides: SecurityOverride[]): string; private createBackup; private applyOverridesToPackageJson; applyAutoFix(overrides: SecurityOverride[], packageJsonPath?: string): string | void; private resolveAutoFixPackagePath; private readPackageJsonForAutoFix; private buildAutoFixedPackageJson; private buildUpdatedAppendix; private buildSecurityOverrideDetails; private buildSecurityOverrideDetailMetadata; private writePackageJson; private getOverrideField; rollbackAutoFix(backupPath: string, originalPath: string): void; } export * from "../../types"; export * from "./providers"; export { SecuritySetupWizard, promptForSetup, createOutput } from "./setup"; export type { SetupResult, OutputFunctions } from "./types";