Skip to content

Commit

Permalink
Js audit (#487) (#488)
Browse files Browse the repository at this point in the history
* added js rules

* knex rule refactoring

* code refactoring
  • Loading branch information
ankit-privado authored Jul 9, 2024
1 parent e812bef commit 7f1004c
Show file tree
Hide file tree
Showing 2 changed files with 3 additions and 1 deletion.
2 changes: 1 addition & 1 deletion rules/sinks/storages/amazonS3/javascript.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@ sinks:
- aws.amazon.com
patterns:
- "@aws-cdk\\/aws-s3"
- "@aws-sdk\\/client-s3"
- "(?i)(@aws-sdk\\/client-s3).*"
- "multer-s3-gcs|@directus\\/drive-s3|koop-s3fs|parse-s3-bucket-key|parse-aws-s3-url|random-access-s3|s3-uploading|s3proxy|easy-yandex-s3-extended|s3-post-policy|s3-list-all-objects|react-native-upload-aws-s3|@aws-solutions-constructs\\/aws-s3-step-function|@djabry\\/fs-s3|@ntegral\\/nestjs-s3|s3-imgurl-upload|ghost-s3-compat|react-aws-s3-g3|s3-asset-uploader|s3-bucket-multipart-toolkit|@pentcloud\\/strapi-provider-upload-s3|s3-emails-to-mongo|semantic-release-s3|s3-bucket-downloader|s3-s3|s3-file-scan-cat|aws-s3-copy-x|veritas-s3-transform|s3-dir-backup|strapi-provider-upload-aws-s3-cf|aws-s3-uploader|@leapllc\\/s3-files-adapter|jsreport-aws-s3-storage|aws-s3-files|gn-s3-uploader|aws-s3-signurl|@apparts\\/s3deploy|s3tools|react-s3|multer-s3|s3-upload-stream|@aws-cdk\\/aws-s3-assets|s3-stream-upload|@aws-cdk\\/aws-s3-deployment|amazon-s3-uri|s3-uploader|@aws-cdk\\/aws-s3-notifications|s3-streaming-upload|s3-diff|s3-website|@parse\\/s3-files-adapter|s3-db|aws-s3-form|s3-url|ghost-storage-adapter-s3|s3-nodejs-sample|gatsby-plugin-s3|keystone-storage-adapter-s3|s3-ingestor|s3-files|aws-s3|react-aws-s3|ghost-s3-storage|s3-server|node-sftp-s3|s3-antivirus|bloody-simple-s3|to-s3|s3-utils|multer-s3-uuid|aws-s3-synch|s3-parallel-get|s3-directory-upload|@aws-solutions-constructs\\/aws-cloudfront-s3|s3-proxy|@smallmultiples\\/s3|polly-s3|s3-ls-lite|@aws-solutions-constructs\\/aws-kinesisfirehose-s3|github-to-s3|deploy-aws-s3-cloudfront|s3-spa-upload|multer-s3-transform|@tokenizer\\/s3|lazy-s3|s3-list-bucket-stream|multer-s3-v3|lasso-s3-writer|couchdb-to-s3|@aws-solutions-constructs\\/aws-iot-kinesisfirehose-s3|@aws-solutions-constructs\\/aws-kinesisfirehose-s3-and-kinesisanalytics|strapi-provider-upload-aws-s3-enhanced|multer-s3-v2|@fab\\/deployer-aws-s3|@samwen\\/aws-s3-utils|@itentialopensource\\/adapter-aws_s3|s3-lambo|@cloudcomponents\\/cdk-s3-antivirus|scaleway-s3|aws-s3-upload-ash|s3-image-uploader|@eggplugin\\/s3|nodebb-plugin-s3-uploads-updated-again|jsreport-fs-store-aws-s3-persistence|cache-manager-s3|co-s3|use-s3-uploader|hubot-s3-brain|@guidesmiths\\/systemic-aws-s3|node-mongodump-s3|mongo-dump-s3-2|@jsreport\\/jsreport-aws-s3-storage|s3getimage|react-native-aws3-upload|aws-thin-s3|multer-s3-stream|s3-config|strapi-provider-upload-aws-s3-with-rekognition|node-sftp-s3-kt|@losttracker\\/s3-uploader|@akud\\/aws-s3-sync-by-hash|@benjamminj\\/react-aws-s3|@sapianco\\/node-red-contrib-storage-s3|s3-list-all-the-objects|ceph-s3|@fpt-smart-cloud\\/nestjs-s3|@btime\\/aws-s3|hapi-s3-upload|pm2-logrotate-s3|nodebb-plugin-s3-uploads-fork|strapi-provider-upload-s3-plus|aws-s3-deploy|dist-upload-s3|dao-s3|@caliatys\\/s3-service|s3-copy|brcap-paginacao-s3|nodebb-plugin-s3-uploads|s3-proxy-middleware|hexo-deployer-sync-s3|s3-ls|s3img|s3list|pico-s3|s3leveldown|@aws-solutions-constructs\\/aws-s3-stepfunctions|@aws-solutions-constructs\\/aws-eventbridge-kinesisfirehose-s3|react-native-s3-upload|s3-tree|aws-s3-size|easy-yandex-s3|multer-sharp-s3|s3-tail-stream|@rlyle1179\\/s3-diff|@atomist\\/sdm-pack-s3|aeris-s3-sync|node-red-contrib-storage-s3|s3-emails|imapper-auth-s3|@project-furnace\\/s3utils|s3-object-content-stream|strapi-provider-upload-aws-s3-resizing-and-optimisation|le-challenge-s3|strapi-provider-upload-aws-s3-enhanced-v5|react-aws-s3-typescript|s3-xfer|nano-s3|strapi-provider-upload-aws-s3-charged|aws-s3-reactjs|@silver886\\/aws-s3|codepipeline-s3-package|@runforest\\/s3deploy|@nx-cache\\/aws-s3|aws-s3-manager|@chakrahq\\/strapi-provider-upload-aws-s3|eip-s3-deploy|strapi-provider-upload-aws-s3-imagekit-cdn|@cdk-cloudformation\\/tf-aws-s3bucket|@d0whc3r\\/node-s3|@cdk-cloudformation\\/tf-aws-s3bucketobject|node-s3-utils|nodebb-plugin-s3-uploads-updated|strapi-provider-upload-s3-saycustom|@alexcons\\/ghost-storage-adapter-s3|multer-s3-imager|react-native-s3-upload-new|s3policy|awssum-greenqloud-s3|s3-archive|s3-disk-cache|data-s3|s3-bucket-size|@foal\\/aws-s3|cdk-s3bucket-ng|sanitize-s3-objectkey|typescript-aws-s3-helper|react-use-s3|s3-bucket-toolkit|@koopjs\\/filesystem-s3|@sustainhawaii\\/s3-files|s3-image-size|s3bubble-javascript|@xenfo\\/multer-s3|multer-aws-s3|aws-s3-react|node-red-contrib-s3|react-native-s3|@mailprotector\\/haraka-plugin-s3-fetch|@eyevinn\\/iaf-plugin-aws-s3|metalsmith-s3|s3-bucket|semantic-release-s3-upload|s3upload|@jsreport\\/jsreport-fs-store-aws-s3-persistence|deploy-aws-s3-cloudfront-with-cache-contol|@mcma\\/aws-s3|@michaukrieg\\/multer-s3|@igor-lemon\\/s3-files-adapter|react-aws-s3-uploader|node-s3|s3-prototype|ts-s3-publish|@digitregroup\\/s3-to-anything|copy-s3-files|flush-s3-bucket|s3-url-parser|@nona-creative\\/aws-cdk-s3-cloudfront|@dabapps\\/django-s3-file-upload|aws-s3-object-multipart-copy|strapi-provider-upload-aws-s3-iam|multer-storage-s3|s3-list-all|ng6-s3-uploader|@aws-solutions-constructs\\/aws-events-rule-kinesisfirehose-s3|simple-s3-deploy|@neoskop\\/s3surgeon|aws-s3-pro|s3-file-concat|@foxpage\\/foxpage-server-provider-aws-s3|s3-mongo-backup|s3-upload-stream-encrypt|aws-s3-upload|@apployees-nx\\/s3leveldown|@asquero\\/upload-file-to-s3|node-s3-proxy|@aws-cdk\\/aws-s3|s3-public-url|s3-object-streams|aws-s3-sync|knox-s3|s3-cached|ngx-s3-uploader|keystone-s3-upload-adapter|ghost-storage-s3|@slynova\\/flydrive-s3|nestjs-s3|react-native-aws3|s3-redeploy|multer-sharp-s3-opt|@aws-solutions-constructs\\/aws-kinesisstreams-kinesisfirehose-s3|@stayradiated\\/s3-list-bucket-stream|awss3-deploy|@rlyle1179\\/s3-website|greenlock-storage-s3|strapi-provider-upload-aws-s3-plus-cdn-public-access|@tailee\\/nodebb-plugin-s3-uploads|strapi-provider-upload-aws-s3-public|@booreiland\\/keystone-storage-adapter-s3|cordova-plugin-except-aws-s3-from-ats|tycrek-s3-transform|s3-dl|s3-plus|multer-s3-rotate|s3-bucket-empty|aws-s3-uooobarry|nodebb-plugin-s3-uploads-etr|hexo-deployer-s3|aws3.js|mongodb-dump-backup-aws-s3|s3-bucket-stream"
- "(?:mongo-dump-s3-2|mongodb-dump-backup-aws-s3|node-mongodump-s3|amazons3-files-copier|node-document-storage-amazons3|@filesrocket/amazons3|filesrocket-amazons3|rf-amazons3-upload|@royal-fox/rf-amazons3-upload).*"
tags:
2 changes: 2 additions & 0 deletions rules/sinks/third_parties/sdk/amazon/javascript.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -12,6 +12,7 @@ sinks:
- "aws-sqs-"
- "@aws-solutions-constructs\\/aws-(lambda-sqs|sns-sqs|lambda-sqs|sqs-helper|apigateway-sqs|s3-sqs)"
- "graphql-sqs-subscriptions|sns-sqs-slq-code7|@battleline\\/sqs-large-payload-nodejs|typescript-aws-sqs-helper|sqs-consumer"
- "(?i)(@aws-sdk\\/client-sqs).*"
tags:

- id: ThirdParties.SDK.Amazonaws.Athena
Expand Down Expand Up @@ -123,6 +124,7 @@ sinks:
- "aws.amazonaws.com/cloudwatch"
patterns:
- "(?i)(@aws-cdk\\/aws_cloudwatch)"
- "(?i)(@aws-sdk\\/client-cloudwatch).*"
- "cloudwatch-logs-janitor|cfn-cloudwatch-events-rule|cfn-cloudwatch-events-target|typescript-aws-cloudwatch-helper|cloudwatch-logs-janitor"
tags:

Expand Down

0 comments on commit 7f1004c

Please sign in to comment.