@enterprise-cmcs/macpro-security-hub-sync
Advanced tools
@enterprise-cmcs/macpro-security-hub-sync - npm Package Compare versions
Comparing version 1.9.0 to 1.10.0
@@ -38,3 +38,2 @@ "use strict"; | ||
| ], | ||
| ProductName: [{ Comparison: "EQUALS", Value: "Security Hub" }], | ||
| SeverityLabel: this.severityLabels, | ||
@@ -48,2 +47,17 @@ CreatedAt: [ | ||
| }; | ||
| if (process.env.INCLUDE_ALL_PRODUCTS !== "true") { | ||
| filters.ProductName = [{ Comparison: "EQUALS", Value: "Security Hub" }]; | ||
| } | ||
| if (process.env.SKIP_PRODUCTS) { | ||
| const skipList = process.env.SKIP_PRODUCTS.split(","); | ||
| skipList.forEach((product) => { | ||
| if (!filters.ProductName) { | ||
| filters.ProductName = []; | ||
| } | ||
| filters.ProductName?.push({ | ||
| Comparison: "NOT_EQUALS", | ||
| Value: product, | ||
| }); | ||
| }); | ||
| } | ||
| // use an object to store unique findings by title | ||
@@ -50,0 +64,0 @@ const uniqueFindings = {}; |
@@ -108,3 +108,3 @@ "use strict"; | ||
| resources.forEach(({ Id, Partition, Region, Type }) => { | ||
| Table += `${Id.padEnd(maxLength + 2)}| ${Partition.padEnd(11)} | ${Region.padEnd(9)} | ${Type} \n`; | ||
| Table += `${Id.padEnd(maxLength + 2)}| ${(Partition ?? "").padEnd(11)} | ${(Region ?? "").padEnd(9)} | ${Type ?? ""} \n`; | ||
| }); | ||
@@ -111,0 +111,0 @@ Table += `------------------------------------------------------------------------------------------------`; |
@@ -7,3 +7,3 @@ { | ||
| }, | ||
| "version": "1.9.0", | ||
| "version": "1.10.0", | ||
| "description": "NPM module to create Jira issues for all findings in Security Hub for the current AWS account..", | ||
@@ -10,0 +10,0 @@ "main": "./dist/index.js", |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Environment variable access
Supply chain riskPackage accesses environment variables, which may be a sign of credential stuffing or data theft.
Found 2 instances in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Improved metrics
- Total package byte prevSize
- increased by1.25%
47630
- Lines of code
- increased by1.72%
828
Worsened metrics
- Number of low supply chain risk alerts
- increased by11.54%
29